Feature: Documentation for the pkce_enabled option on custom OAuth2.0 integrations
Description: There is at least one option for the PATCH /api/v2/connections/{id} endpoint that is not documented. The page below should include the attribute “pkce_enabled” on the “options” body parameter.
https://auth0.com/docs/api/management/v2/connections/patch-connections-by-id
This other docs page might also want to mention it:
https://auth0.com/docs/authenticate/identity-providers/social-identity-providers/oauth2
The only place online I found where it was mentioned is this forum post:
I think it would be better if this was a documented feature, or if it was even just a checkbox on the Custom Social Connections configuration form.
Use-case: I am working for an IdP that wants to provide the option for its customers to use their services via Auth0 universal login. The provider uses PKCE by default and does not want to disable it, since it provides additional protection. If the customers are to configure the Auth0 integration on their own, it would be nice to be able to have a check box for toggling PKCE.