I’m looking at using Auth0 as an authentication provider for our stack but am struggling a bit with setting up APIs / Applications etc. This is what we’d like to do:
We use React apps with NextJS for internal / external administrative portals.
Internal users have Google Suite accounts.
I’d like internal users to be able to log in to portals using their corporate G Suite accounts (saves having another login)
I’d like external users to be able to log in to portals using manually created accounts within Auth0
The React apps will make requests to Spring Boot microservices for data load. The call should be authenticated using the user’s login token.
We have a suite of B2B APIs that we’d like to use Auth0 for authentication / authorisation. These APIs will be accessed by external partners as well as internally owned apps.
What I’ve tried to do so far is set up a Single Page App for a React portal and, using Next-Auth, I have that connecting to Auth0 allowing a G Suite login. I have also created an API for the Spring Boot back end for the portal and have the service able to verify a token against Auth0. The challenge I’m facing is that the token in the React app does not verify with the API, they’re encoded differently. I think I’ve set it up incorrectly, hence this post!