Disable the Consent Screen for Profile when Logging into Auth0 Applications

Problem statement

We would like users to seamlessly log in to their apps without having a one-time authorization for the profile.

image704×830 45.7 KB

Steps to Reproduce

The user signs up, or it’s migrated from another DB, yet it’s the first time login into the application.

Cause

Only first-party applications can skip the consent dialog, but only if the API they are trying to access on behalf of the user has the Allow Skipping User Consent option enabled.

Solution

If the audience it’s any Custom API from your tenant, you could toggle on the “Allow Skip User Consent” within the Dasboard > Applications > API > {selected_api}.

If the audience is the Management API, you need to check that the client has is_first_party property: true. This can be updated from the APIv2 as well.

Helpful links to extend the above information:

• OAuth 2.0 Authorization Framework
• User Consent and Third-Party Applications
• First-Party and Third-Party Applications
• Skipping User Consent Page
• How do I skip the consent page for my API Authorization flow?