Auth0 Token with grant_type = “password”

bharati.sarada · January 10, 2023, 4:16pm

I need one help on Authorization part.
we achieved below points.
1- We are able to get Management API token with client_id, client_secret, audience & “grant_type”:“client_credentials”
2- We are able to create user/get userinfo with this token.
3- we are able to get access_token & id_token by “grant_type”:“password”, with Username & Password.

Till here we are good.
Now Question is, we have our own API which is hosted in AWS, Now we need to Authorize that api with id_token (Considering user specific Token)

I am able to Authorize with Management API token, but that is static for all users, I need to authorize my API with User Based token when I can also get some claims values etc.

Hope my requirement is clear to you.
Let me know if you need any other information from my end.

Thanks in Advance.

tyf · January 11, 2023, 11:50pm

Hey there @bharati.sarada!

You’ll still want to authorize against your API with an access token as opposed to ID token - The access token will contain a sub claim which is the ID of the user in Auth0. You can also add any custom claims you find necessary using Actions.

Hope this helps point you in the right direction!

system · January 25, 2023, 11:51pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.