Best practice to set up one m2m app and multiple APIs


I am wondering how it would be better to set up one m2m application and multiple APIs. Is it better to create one m2m app and link it to all APIs or create separate m2m apps for each API and link them one to one? Asking this since creating separate m2m apps seems to be a more secure approach because there will be different client ids and secrets used for each API. Is my understanding correct?


Hi @domasr,

Welcome to the Auth0 Community!

Generally, you would have one application. The application requests tokens from the auth server and uses the tokens to request resources from the API. I don’t see the benefit of multiple M2M applications in this scenario, but I would be happy to explore further if you provide more detail.

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.