Can we obtain Access Token for our API without any authentication happening before?

clubbing · February 27, 2021, 10:31pm

Hi.

Our REST API requires an access token. For specific Endpoints, a valid JWT token containing an authenticated user is required, for some others not.

However, as far as I know, to retrieve access tokens using Auth0 will require a valid user login.
Is it possible to have both worlds? To obtain an Access token without any requirements (like as an “Anonymous”) and obtain access tokens requiring authenticated users?

Many Thanks in advance!

ricardo.batista · March 1, 2021, 12:01pm

Hi @clubbing

You can retrieve access tokens without a user login by using the Client Credentials flow. With machine-to-machine (M2M) applications, such as CLIs, daemons, or services running on your back-end, the system authenticates and authorizes the app rather than a user. You’ll just need to provide the client id and secret to get a valid access token back. Please see more info here:

Topic		Replies	Views
Auth0 Login Flow without user interaction Get Help identifier-first , login-experience	2	181	April 24, 2025
How to get token from a nodejs application Get Help jwt , auth0 , api	7	2647	July 31, 2022
Can a server login a user without having the password? Get Help lock , jwt , auth0 , api	6	2906	February 8, 2022
How to obtain user JWT token from username/password? Get Help jwt , access-token , user	12	36136	June 29, 2020
How to get Auth token for server to create new user Get Help jwt , api , machine-to-machine	5	5748	January 25, 2019

Can we obtain Access Token for our API without any authentication happening before?

Related topics