Granting API Access to Applications with Terraform

konrad.sopala · December 7, 2023, 8:05am

Problem statement

How does one grant API access to applications with Terraform?

Solution

This can be done using the auth0_client_grant resource.

Here’s an example:

# The following example grants a client the "create:foo" and "create:bar" permissions (scopes).

resource "auth0_client" "my_client" {
  name = "Example Application - Client Grant (Managed by Terraform)"
}

resource "auth0_resource_server" "my_resource_server" {
  name       = "Example Resource Server - Client Grant (Managed by Terraform)"
  identifier = "https://api.example.com/client-grant""

  scopes {
    value       = "create:foo"
    description = "Create foos"
  }

  scopes {
    value       = "create:bar"
    description = "Create bars"
  }
}

resource "auth0_client_grant" "my_client_grant" {
  client_id = auth0_client.my_client.id
  audience  = auth0_resource_server.my_resource_server.identifier
  scopes    = ["create:foo", "create:bar"]
}

As shown above, the auth0_client_grant definition includes the client_id of the application, the API’s audience, and the scopes that should be granted to the application.

Topic		Replies	Views
Terraform: configure API grants for machine-to-machine client Help terraform	3	3087	July 28, 2022
Using terraform, how does one provide Auth0 Management API permissions to a Client application? Help	4	1803	April 17, 2023
Terraform Auth0 - Authorizing M2M App for Resource Server Help management-api , roles	4	1624	September 8, 2023
Terraform: auth0_client_grant Help management-api , grants	3	912	August 31, 2023
How to authorize application for management API with API Help management-api , resource-servers	2	1209	June 28, 2023

Granting API Access to Applications with Terraform

Problem statement

Solution

Related topics