We’re trying to decide if we want to use Auth0 interally, and we could definitely benefit from the authentication options the API gives us, but I’m wondering if it’s possible to use your own, custom Authorization method on top of the Auth0 Authentication.
It seems like it could be possible to add rules to do this. Based on this simple example it seems at least possible to restrict access based on simple parameters, but ideally we would like to call an internal authorization API from the rule and then use that result to restrict or allow access. Is that possible and/or efficient? Has anyone else tried it?
The reason I ask about custom authorization over Auth0 Supported options is because this post states that to use the Authorization Extension you need to be on the Developer Pro plan.