Skip to main content

Documentation Index

Fetch the complete documentation index at: https://mintlify.com/ephraimduncan/blocks/llms.txt

Use this file to discover all available pages before exploring further.

Overview

Login blocks provide ready-to-use authentication interfaces for user sign-in and registration. From simple email/password forms to advanced SSO and magic link authentication, these components cover all common authentication patterns.

Available Blocks

Login with Email and Google

Email-based login with Google OAuth integration

Login with Email, Password and Google

Traditional email/password form with Google sign-in option

Login with Email and Password

Simple email and password authentication form

Login with Social Buttons

Multiple social login providers (Google, GitHub, Facebook, etc.)

Login Card Signup Form

Registration form with card layout

Login with Magic Link and SSO

Passwordless magic link authentication with SSO support

Login Full Page with Icons

Full-page login layout with brand icons and visuals

Login with SSO

Enterprise SSO authentication interface

Login Signup with Role Selection

Registration form with user role or account type selection

Authentication Methods

Email & Password

Traditional authentication with email and password. Includes forgot password functionality.

Social Login

OAuth integration with providers like Google, GitHub, Microsoft, and more. Passwordless authentication via email link. Better UX and security.

SSO (Single Sign-On)

Enterprise authentication with SAML or OAuth providers.

Role-based Registration

Allow users to select their role or account type during signup.

Use Cases

Implement user authentication for SaaS products with support for individual users and enterprise SSO.
Use social login buttons to reduce friction and increase conversion rates for consumer applications.
Deploy SSO-based authentication for enterprise customers who need centralized identity management.
Implement role selection during signup to route users to appropriate dashboards and experiences.
Use magic link authentication for improved security and user experience without password management.

Implementation Example

import { LoginWithEmailAndPassword } from '@/components/blocks/login-03'
import { signIn } from 'next-auth/react'
import { useState } from 'react'

export default function LoginPage() {
  const [error, setError] = useState('')
  const [loading, setLoading] = useState(false)
  
  const handleLogin = async (email: string, password: string) => {
    setLoading(true)
    setError('')
    
    try {
      const result = await signIn('credentials', {
        email,
        password,
        redirect: false
      })
      
      if (result?.error) {
        setError('Invalid email or password')
      } else {
        router.push('/dashboard')
      }
    } catch (err) {
      setError('An error occurred. Please try again.')
    } finally {
      setLoading(false)
    }
  }
  
  return (
    <LoginWithEmailAndPassword
      onSubmit={handleLogin}
      error={error}
      loading={loading}
    />
  )
}

Social Login Integration

Implement OAuth providers: 
import { LoginWithSocialButtons } from '@/components/blocks/login-04'

const socialProviders = [
  {
    id: 'google',
    name: 'Google',
    icon: GoogleIcon,
    onClick: () => signIn('google')
  },
  {
    id: 'github',
    name: 'GitHub',
    icon: GitHubIcon,
    onClick: () => signIn('github')
  },
  {
    id: 'microsoft',
    name: 'Microsoft',
    icon: MicrosoftIcon,
    onClick: () => signIn('azure-ad')
  }
]

<LoginWithSocialButtons
  providers={socialProviders}
  onProviderClick={(providerId) => signIn(providerId)}
/>
When implementing social login, ensure you handle OAuth callbacks properly and store user sessions securely. Use established libraries like NextAuth.js, Supabase Auth, or Firebase Authentication.

Best Practices

Security

  • HTTPS Only: Always use HTTPS for authentication pages
  • Password Requirements: Enforce strong password policies
  • Rate Limiting: Prevent brute force attacks with rate limits
  • CSRF Protection: Implement CSRF tokens for form submissions
  • Session Management: Use secure, HTTP-only cookies
  • 2FA Support: Offer two-factor authentication for enhanced security

User Experience

  • Clear Error Messages: Be specific but don’t reveal whether email exists
  • Loading States: Show feedback during authentication
  • Remember Me: Offer option to stay logged in
  • Password Visibility: Toggle to show/hide password
  • Auto-focus: Focus email field on page load
  • Link to Signup: Clear path to create account
  • Forgot Password: Easy access to password reset

Form Validation

const loginSchema = z.object({
  email: z.string()
    .min(1, 'Email is required')
    .email('Invalid email address'),
  password: z.string()
    .min(1, 'Password is required')
    .min(8, 'Password must be at least 8 characters')
})

const form = useForm({
  resolver: zodResolver(loginSchema),
  defaultValues: {
    email: '',
    password: ''
  }
})
Implement passwordless auth: 
import { LoginWithMagicLink } from '@/components/blocks/login-06'

const handleMagicLink = async (email: string) => {
  setLoading(true)
  
  try {
    // Send magic link
    await fetch('/api/auth/magic-link', {
      method: 'POST',
      body: JSON.stringify({ email }),
      headers: { 'Content-Type': 'application/json' }
    })
    
    setMessage('Check your email for the login link')
  } catch (error) {
    setError('Failed to send magic link')
  } finally {
    setLoading(false)
  }
}

<LoginWithMagicLink
  onSendMagicLink={handleMagicLink}
  loading={loading}
  message={message}
/>

SSO Configuration

For enterprise SSO: 
import { LoginWithSSO } from '@/components/blocks/login-08'

const handleSSOLogin = async (domain: string) => {
  // Lookup SSO configuration for domain
  const config = await fetchSSOConfig(domain)
  
  if (config) {
    // Redirect to SSO provider
    window.location.href = config.ssoUrl
  } else {
    setError('No SSO configuration found for this domain')
  }
}

<LoginWithSSO
  onSSOLogin={handleSSOLogin}
  placeholder="company.com"
/>

Error Handling

Provide helpful error messages:
ErrorUser Message
Invalid credentials”Email or password is incorrect”
Account not found”No account found with this email”
Account locked”Account locked. Contact support”
Network error”Connection failed. Please try again”
Rate limited”Too many attempts. Try again in 5 minutes”

Accessibility

  • Label all form inputs clearly
  • Provide error messages with ARIA live regions
  • Ensure keyboard navigation works
  • Use appropriate input types (email, password)
  • Support password managers
  • Clear focus indicators
  • Screen reader friendly error messages

Password Reset Flow

<div className="text-sm text-center mt-4">
  <a 
    href="/forgot-password"
    className="text-primary hover:underline"
  >
    Forgot your password?
  </a>
</div>