I am working on an App that is secured with auth0 but we want users who are NOT signed into our android/ios app to be able to make requests with a default/hardcoded JWT that has very limited GET request access. My question is if we can create an access token that doesn’t expire or possibly have some…

Hey @sam.gosman welcome to the community! [image] sam.gosman: My question is if we can create an access token that doesn’t expire or possibly have some sort of API key that we can cycle every couple of months. While Auth0 doesn’t support this functionality exactly, it sounds like using an M2…

Generic token/API key

Help

tyf October 15, 2022, 12:46am 3

Hey @sam.gosman welcome to the community!

While Auth0 doesn’t support this functionality exactly, it sounds like using an M2M/client credentials flow might suit your needs:

https://auth0.com/docs/get-started/authentication-and-authorization-flow/call-your-api-using-the-client-credentials-flow

There’s an existing request to add this functionality if you would like to upvote.

Keep us posted!

Topic		Replies	Views
Simple API keys Help	4	3034	October 18, 2019
Access token expiration >30 days Help api-keys , token-expiration	2	3145	February 8, 2021
Feature Request: Facilitate API Keys or Personal User Tokens Help auth0 , api	2	3260	February 28, 2020
Can I use a refresh token as a user API Token? Help	9	3552	March 23, 2020
Third party access to API Help apis , application	2	980	August 22, 2023

Generic token/API key

Related Topics