How to block delete api

Hello
In auth0 is a delete api
/api/v2/users/{id}

I have one application machine to machine which can use api from auth0. How to block this one delete api for chosen application?

Hi @mab

Go to your Auth0 dashboard, open the Applications Section and go to theApplications subsection.
Choose your M2M application that is calling the management API.
Click the APIs tab for that app.
Next to the management API is a down arrow, click that to expand the permissions.
Remove the delete:users and any other permissions not needed by that app.

John

1 Like

Thanks, John, good job :grinning: