Client Credentials Flow for Organisation

Hi.

I’m looking to utilize the client credentials flow for organizations. Is it currently possible to request ‘organization’ scoped tokens using the API?

Equally, is it possible to delegate the generation of these tokens to a member of the organization?

2 Likes

Hi @mattbrown1,

Welcome to the Auth0 Community!

Can you please expand on this use case? Client credentials are typically seen as user-less tokens. Adding them to an organization and delegating them to a user sounds like you want a user’s token. What would be the difference there?

Hey Dan - thanks for your reply.

So I basically just want a token with and org_id parameter generated using the client credentials flow - not sure if this is possible? Of course, as standard with this flow, the client requesting these tokens would be trusted.

I guess this is a two-parter: it would be great to be able to delegate the ability to delegate the ability to do this for a member of an organization for the organization they are in.

Matt

Hi @mattbrown1 - thanks for clarifying. This is not currently possible but we are planning to integrate Organizations & client_credentials in a way similar to what you are describing. It would be helpful to understand your use-case a bit more: what does an organization represent in your product? What are these clients requesting access to?

4 Likes

Great to hear.

We have a B2B2C setup where an Auth0 organization is in effect a reseller. They need to be able to provision their own M2M access to our APIs.

Matt

2 Likes

Hi all, I would also be interested in this feature, essentially the ability to add api-keys to an organization, so that their organization ID would appear in the jwt.

2 Likes

Same here. hardly needed feature

1 Like

Please make this happen.

2 Likes

We’re about to migrate all our products from Azure AD to Auth0. This feature is basically required for all our API’s. Is there a road map around it?

As a work around I think about adding the org id to the app’s metadata and then to the JWT via a Auth0 action. Any thoughts on that? :slight_smile:

Hi team!

Client’s Credential Flow support for Organization is right now in the private Early Access, which you can join by contacting your Auth0 account manager. If you can wait, the General Access for this feature is expected to launch during the second half of this year. I will keep you informed when I will have more information regarding this feature.

Thanks
Dawid

1 Like

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.