Custom domain 401 when calling management api

vremerz · April 7, 2020, 1:43pm

I am trying to switch over to universal login flow using a custom domain.

So at the moment I can log in using the custom domain on the client, and it can make calls to my api fine. But I have an endpoint to get the user, which needs to make a call to the auth0 management api,

in the api I’m getting the token like so with the following endpoint and body:

`https://${customDomain}/oauth/token` 
body: {
      grant_type: 'client_credentials',
      client_id: clientId,
      client_secret: clientSecret,
      audience: `https://{customDomain}/api/v2/`,
     }

When I call the management api to get a user like so;

`https://${customDomain}/api/v2/`

with the token I get back from above, I get an 401 error

{ statusCode: 401,
  error: 'Unauthorized',
  message: 'Bad audience: https://{cusomDomain}/api/v2/' }

What am i doing wrong?

dan.woda · April 8, 2020, 10:26pm

Hi @vremerz,

Welcome to the Community!

Are you missing the $ in the template literal? Like this?

 audience: `https://${customDomain}/api/v2/`

dan.woda · April 23, 2020, 2:26am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

thomas.osborn · September 14, 2020, 7:07pm

If you’re calling the management API you need to use your regular Auth0 domain for the audience parameter, not the Custom Domain.