How to Enable PKCE for Custom Social Connections

Overview

An OAuth2 Social Identity Provider requires the use of Authorization Code + PKCE, and Auth0 Custom Social Connections do not seem to offer that configuration option.

Applies To

  • Custom Social Connections
  • PKCE
  • OAuth2 Social Identity Provider

Solution

We have an undocumented option to support PKCE with custom OAuth2 connections, where the value can be set using the Management API2.

options.pkce_enabled: true

Use this with the upstream IDP.

Related References