Get Started
1
Create a new Android project
Create a new Android project for this quickstart.In Android Studio:
- File → New → New Project
- Select Phone and Tablet → Empty Activity template
- Configure your project:
- Name: Auth0-Android-Sample
- Package name: com.auth0.samples.android
- Language: Kotlin
- Minimum SDK: API 24 (Android 7.0)
- Build configuration language: Kotlin DSL
 
- Name: 
- Click Finish
This creates a modern Android app with Kotlin and Gradle Kotlin DSL, following current Android development best practices.
2
Add Auth0 SDK via Gradle
Add the Auth0 Android SDK to your project using Gradle.Update your app-level Add Internet permission to 
build.gradle.kts file:app/build.gradle.kts
AndroidManifest.xml:app/src/main/AndroidManifest.xml
The Auth0 SDK automatically handles dependency resolution and includes secure token storage capabilities. Manifest placeholders will be configured with your Auth0 credentials in the next step.
3
Setup your Auth0 App
Next up, you need to create a new app on your Auth0 tenant and add the configuration to your Android project.First, prepare your Replace 
app/src/main/res/values/strings.xml file with placeholder values:app/src/main/res/values/strings.xml
- Head to the Auth0 Dashboard
- Click on Applications > Applications > Create Application
- In the popup, enter a name for your app, select Nativeas the app type and click Create
- Switch to the Settings tab on the Application Details page
- Replace YOUR_AUTH0_DOMAINandYOUR_AUTH0_CLIENT_IDin thestrings.xmlfile with the Domain and Client ID values from the dashboard
YOUR_AUTH0_DOMAIN with your actual Auth0 domain (e.g., dev-abc123.us.auth0.com).Allowed Callback URLs are a critical security measure to ensure users are safely returned to your application after authentication. Without a matching URL, the login process will fail, and users will be blocked by an Auth0 error page instead of accessing your app.Allowed Logout URLs are essential for providing a seamless user experience upon signing out. Without a matching URL, users will not be redirected back to your application after logout and will instead be left on a generic Auth0 page.The URL scheme includes your package name (
com.auth0.samples.android) to ensure the callback is routed to your specific app.Important: Ensure the package name in your callback URLs matches your 
applicationId in build.gradle.kts. If authentication fails, verify these values are identical.4
Create the Authentication Service
Create a centralized service to handle all authentication logic.Add a new Kotlin file:
- Right-click your package → New → Kotlin Class/File → File
- Name it AuthenticationManager
- Replace its contents with:
AuthenticationManager.kt
6
Create the layout and styling
Create a modern Android layout with Material Design components.Update your Add drawable resources:
Create 
activity_main.xml layout file:app/src/main/res/layout/activity_main.xml
app/src/main/res/drawable/ic_shield.xml:app/src/main/res/drawable/ic_shield.xml
7
Run your app
Build and run your Android application.In Android Studio:Expected flow:
- App launches with “Log In” button and shield icon
- Tap “Log In” → Chrome Custom Tab opens → Complete login
- Returns to app automatically
- Success!!
Android will show a browser selection dialog if multiple browsers are installed. Chrome Custom Tabs provide the best user experience for Auth0 authentication.
CheckpointYou should now have a fully functional Auth0 login experience running on your Android device or emulator. The app uses Chrome Custom Tabs for secure authentication and automatically stores credentials.
Troubleshooting & Advanced
Common Issues & Solutions
Common Issues & Solutions
Chrome Custom Tab doesn’t redirect back to app
Solutions:- Check Allowed Callback URLs in Auth0 Dashboard match your applicationIdexactly
- Verify manifest placeholders in build.gradle.ktsare correct
- Ensure both HTTPS and custom scheme URLs are configured
- Clean and rebuild: Build → Clean Project → Rebuild Project
App crashes: ‘Auth0 domain not found’
Fix:- Check com_auth0_domainandcom_auth0_client_idvalues are correct
- Ensure no typos in domain format (should not include https://)
Build errors with dependencies
Fix:- Update to latest Android Gradle Plugin in build.gradle(project level)
- Sync project: File → Sync Project with Gradle Files
- Clean build: ./gradlew clean build
Authentication cancelled by user
Handle gracefully in your error callback:No compatible browser error
- Install Chrome or another modern browser on your device/emulator
- Enable Chrome Custom Tabs for better user experience
- Test on real device with Chrome installed
Production Deployment
Production Deployment
App Store Preparation
- Configure Android App Links for seamless authentication
- Test on multiple Android versions and screen sizes
- Implement proper error handling for network failures
- Add ProGuard rules for Auth0 SDK if using code obfuscation
- Follow Google Play Store policies for authentication flows
Security Considerations
- Use SecureCredentialsManagerfor production credential storage
- Implement certificate pinning for additional API security
- Consider Android Keystore for enhanced credential protection
- Enable biometric authentication for sensitive operations
Advanced Android Integration
Advanced Android Integration
Enhanced Credential Security
Implement biometric authentication for credential access:AuthenticationManager.kt
Custom Scopes and Audience
Request specific scopes and audience for your API:AuthenticationManager.kt
Network Configuration
Handle network security and certificate pinning:app/src/main/res/xml/network_security_config.xml
AndroidManifest.xml: