How to assign scopes to applications via group or policy?


we are using machine to machine applications to secure access to an API.

The API has a set of scopes (e.g. scope1, scope2, scope3, … scope30).

I have several hundred m-2-m applications.

It is HUGELY tedious to have to assign scopes per application. It is even more tedious when a new scope is added to the API, and every application has to be revisited to enable the new scope.

In Okta, it is possible to create policies which determines the available scopes, and then attach applications to the policy. You do not need to define the scopes per application.

Is there any way to achieve a similar behaviour with Auth0, akin to groups or policies, so that we don’t have to go through this ridiculous tedium. It seems to obvious!

Many thanks!

Hi @tarun.mistry,

Welcome to the Auth0 Community!

Auth0 doesn’t have a feature comparable to Okta’s Application Groups. You can’t assign an application a Role, for example.

You could automate the process with one of the following tools:

This would also make a great Feature Request.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.