Hi,
When creating a API in auth0, I have the option of allowing other M2M applications to authenticate to it via the “Machine to Machine applications” tab.
However, it looks that for regular “Application” type applications, all of these are allowed access by default.
I know that I can lock this down via permission scopes, but I feel like that’s overkill - a simple “yes/no” choice so that only “app A” is allowed to authenticate to “API a”, while “app B” is not allowed is all I need.
Is there some hidden Auth0 functionality I’m missing that lets me accomplish this?
regards,
Trond Hindenes