I would like to understand how we should be performing backups of our Auth0 tenant.
In the Operations Readiness guide it is recommended to have backups available in the event of something unforeseen happening:
You should have a plan and mechanism in place to support any backup/restore capability needed for your project. This can be done using the Auth0 Management API for data as well as the Automated Deployment capabilities described in the automated deployment section for Auth0 configuration.
I’m having some difficulty implementing this. We control the tenant configuration programmatically from git using a0deploy
, so we are not worried about the configuration - just the users.
The management APIs provide bulk export and import functionality for users, however they seem to be missing some key features:
- The bulk export API does not allow for hashes to be exported (this is probably OK as users can be restored and instructed to set a new password through password reset)
- The bulk import API only supports importing users into a Database Connection but not to any of the social logins (despite being able to export them)
- A full export (including hashes) is only possible by opening a support ticket
My question: can anyone provide any experience on how you do full backups in a manner that allows for a full restore if the worst were to happen?