It's possible to create authentication for my API clients using auth0?

marcelo.aimone · October 16, 2024, 6:32pm

Following use case:

1 - My API-A authenticate on auth0 with the provided credentials M2M.
2 - My API-A create users on Auth0
3 - My API-A register a client secret with another (reduced) scope on (API-B)
4 - These users consume my API-B that authenticate through my API-A on auth0.

It’s possible to do this? Serve authentication for my users on my API endpoints?

rueben.tiow · October 17, 2024, 5:13pm

Hi @marcelo.aimone,

Welcome to the Auth0 Community!

Yes, your use case is possible.

Call Your API Using the Client Credentials Flow.
Use API-A(Management API) to create users.
Use API-A(Management API) to create API-B with reduced scope.
For users to use API-B and authenticate through API-A, this requires authentication through two separate audiences. First, authenticate the users using the authorization code flow against API-A. Once that’s complete, you can silently authenticate the user against API-B to get a new set of tokens for API-B.

Let me know if you have any questions.

Thanks,
Rueben

system · October 31, 2024, 5:13pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Authenticating user from hardcode (config) username and password Help api , login	9	3833	December 6, 2019
Allowing users to create api keys Help consent , application	2	26	September 10, 2024
Create application/client and authorize for APIs using Management API Help	9	8314	April 19, 2019
Can we use any api/endpoint provided by Auth0 to create user based on email id and token Help management-api , users	9	1671	July 28, 2023
Building a public facing API with Auth0 Help management-api , grants	1	346	April 25, 2024

It's possible to create authentication for my API clients using auth0?

Related Topics