Create application/client and authorize for APIs using Management API

ofjansen · January 8, 2019, 2:58pm

Hi all,

We are creating machine-to-machine applications using the Management API (Auth0 Management API v2) and this works perfectly. However, we would also like to authenticate these applications for certain APIs we have defined in Auth0 and it is currently not clear how to do this using the Management API.
Without this functionality, an Auth0 admin has to manually authorize the generated application to use an API using the Auth0 dashboard and this kind of defeats the purpose of automating the app creation.

Does anybody know more about this?

Thanks!
Olivier

ofjansen · January 13, 2019, 10:57pm

Hi!

We still have not found a solution. Is there anyone here that can help us out?

Thanks!

ofjansen · February 1, 2019, 11:34am

What should I do/who should I approach to get this under the attention of someone at Auth0?

konrad.sopala · February 1, 2019, 11:44am

Hey @ofjansen!

Sorry for the delay in response. There are a lot of community developers asking questions out there and we’re doing our best to provide regularly knowledge and support to all of you but sometimes we’re simply people resources constraint. Thank you for understanding and sorry for the inconvenience!

Please give me a moment to look into this!

ofjansen · February 1, 2019, 11:52am

Hi @konrad.sopala,

Great to hear from you. Thanks for your answer and for looking into it!

konrad.sopala · February 1, 2019, 12:08pm

Ok so judging by your problem description you basically want to call your API from M2M app.

In order to do that you need to set the client grant using either the dashboard or the Management API.

Here’s your step by step doc on how to achieve that with the API:

Let me know if that helps!

ofjansen · February 8, 2019, 8:39am

Thanks @konrad.sopala,

Yes, you are right about auth before using the API. But before all this, the API to be called has to be enabled or authorised for the specific app at Auth0. This can be done using the Auth0 Manage tool after the app has been created (by going to Applications > you app > APIs tab > selecting an API) and the Manage tool also asks for you to select an API to enable when creating a new M2M app. However, the Management API documentation does not mention a way to specify an API to enable/authorise. And that is needed to automate the whole process.

Do you know how to tackle this?

whit.waldo · March 2, 2019, 8:57pm

@ofjansen, I found this page, https://auth0.com/docs/api-auth/config/using-the-auth0-dashboard, that allowed me to just hit a toggle to get my web app authorized and scopes assigned. Perhaps it can help with what you’re trying to do too.

JoseSantos · April 4, 2019, 8:57pm

@ofjansen

The page @konrad.sopala linked has what you are looking for

There is a section (Update Grant Types) on how to authorize an Application for a given API (audience) using the Management API (Auth0 Management API v2). This is what you’re looking for.

We use something along the lines of (Node.js SDK):

return ManagementClient.createClient(params)
  .then((client) => {

    ManagementClient.createClientGrant({
      client_id: client.client_id,
      audience: audience,
      scope: ["sample-scope"]
    });

    return client;
  });

system · April 19, 2019, 8:57pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How can I authorize API for clients created trough the Management API? Help	2	3411	April 5, 2019
Custom API access Management API Help auth0 , api , management-api	4	4800	November 11, 2021
How to authorize application for management API with API Help management-api , resource-servers	2	1209	June 28, 2023
Management API Checklist Help	4	2796	December 20, 2019
Any guidance on regular web app crdentials correct usage to access Management API? Help management-api , users	4	458	January 30, 2024

Create application/client and authorize for APIs using Management API

Related Topics