Authenticate user based on client certificate

ggdigital · April 21, 2020, 4:32pm

Hello,

I would like to know if Auth0 supports getting a user access_token based on client certificate in the same way it works with DB connections with grant_type = password.

I would expect the user (machine/proxy) to provide a certificate to Auth0 inside a header, nothing else.
Auth0 would validate the client certificate against a preinstalled certificate authority.

It the client cert is OK, then extract the username from the CN to retrieve its data and send it back in a JWT.

Regards

dan.woda · April 23, 2020, 4:45pm

Hi @ggdigital,

Welcome to the Community!

The flow you describe is not currently offered. If you would like to submit a feature request that can be done here.

Thanks,
Dan

system · May 8, 2020, 4:45pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.