Authenticate user based on client certificate

ggdigital · April 21, 2020, 4:32pm

Hello,

I would like to know if Auth0 supports getting a user access_token based on client certificate in the same way it works with DB connections with grant_type = password.

I would expect the user (machine/proxy) to provide a certificate to Auth0 inside a header, nothing else.
Auth0 would validate the client certificate against a preinstalled certificate authority.

It the client cert is OK, then extract the username from the CN to retrieve its data and send it back in a JWT.

Regards

dan.woda · April 23, 2020, 4:45pm

Hi @ggdigital,

Welcome to the Community!

The flow you describe is not currently offered. If you would like to submit a feature request that can be done here.

Thanks,
Dan

system · May 8, 2020, 4:45pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Question re: Client Credentials Help jwt , auth0 , client-credentials	3	3787	August 26, 2019
Use client certificate to request M2M token in client credential flow Help apis , application	2	1206	February 20, 2023
Get Access Token directly through cURL requests Help authentication	2	9758	February 14, 2023
How to retrieve access_token for user with only email, client id and client secret? Help management-api , users	2	253	May 7, 2024
Little help to link auth0 client with auth0 api Help jwt , database	2	3987	July 25, 2019

Authenticate user based on client certificate

Related topics