Getting Bad Audience while calling Custom API for Auth0 User Management

dan.woda · June 29, 2021, 11:00pm

No, when you request the token you need to have your management API as the audience.

For example:

const response = await axios({
    method: 'POST',
    url: `https://{tentant}.auth0.com/oauth/token`,
    headers:{ 'Content-Type': 'application/json'},
    data:{
      client_id: <client_id obtained from newly created API>,
      client_secret: <client_secret obtained from newly created API>,
      audience: `https://{tentant}.auth0.com/api/v2/`,
      grant_type: "client_credentials"
    }
    
 })

The audience param defines what resource is consuming the token. Your custom API (example-API) has nothing to do with this transaction.

Topic		Replies	Views
Unauthorized, Bad audience for management api Get Help management-api , auth0js	10	21508	September 9, 2019
Bad Audience when using a custom API JWT.io jwt , api	12	25959	September 3, 2019
Bad Audience when calling Management API v2 Get Help	2	5987	September 5, 2018
Receiving 401 for "Bad audience" when attempting to get a user Get Help management-api , users	4	830	July 6, 2023
Bad Audience - 401Unauthorized Get Help users , roles	5	7856	July 18, 2019

Getting Bad Audience while calling Custom API for Auth0 User Management

Related topics