Hi! I am looking to leverage custom token exchange in our tenant. We have been told that the feature is available to us. When looking through this the [Custom Token Exchange] documentation, it only mentions how to enable it for an application. I attempted to enable for an application and got this error message:
{ "statusCode": 403, "error": "Forbidden", "message": "The token exchange feature is not enabled for this tenant.", "errorCode": "feature_not_enabled"}
I am guessing it needs to be enabled through the management API [Update tenant settings | Auth0 Management API v2], but the documentation doesn’t specify what key to pass to enable custom token exchange.
The Setup segment of our Custom Token Exchange documentation presents how to enable it for you application by setting the allow_any_profile_of_type attribute under token_exchange to ["custom_authentication"]when creating or updating the client via the Management API.
However, at first the documentation also states that:
Custom Token Exchange is currently in Early Access for Enterprise customers only. Reach out to your Auth0 contact to request access.
This would be the requirements to use the new Custom Token Exchange feature.
Hope this helps!
Best regards,
Remus