Allowing API Key based authentication to our API (protected using JWT now)

Our API is protected using a JWT issues by Auth0. We also store some non-sensitive information about the user in the JWT

Now we need a way to allow some specific users to retrieve a JWT given an API Key. Each user can have maximum 1 API Key.

We are considering building a service that given a API Key, retrieves the users Auth0 email and password and logs the user in Auth0 returning a JWT. These users will only have permission to access some public information, security is not an issue but we don’t want to make the endpoint public.

Does Auth0 support any functionality that could do this for us?

Hey there!

Sorry for such delay in response! We’re doing our best in providing the best developer support experience out there, but sometimes the number of incoming questions is just too big for our bandwidth. Sorry for such inconvenience!

Do you still require further assistance from us?