JWT token for guest/anonymous/unauthenticated users

eloypnd.lemonone · September 19, 2018, 2:09pm

Does Auth0 provides any way to provide JWT tokens for guest/anonymous/unauthenticated users?

I am asking for something similar to Firebase anonymous auth or AWS Cognito unauthenticated users.

Thanks.

James.Morrison · September 19, 2018, 3:53pm

Hello there @eloypnd.lemonone! I checked with our TSE team and confirmed that there must be a user in Auth0 to create the Token. Please let me know if this helped answer your question. Thanks!

eloypnd.lemonone · September 19, 2018, 3:59pm

Thanks for your response @James.Morrison.

Do you know if this is a feature that Auth0 has on its roadmap?

James.Morrison · September 20, 2018, 8:23pm

I can’t speak with insight on that but I would highly recommend visiting Auth0.com/feedback and making the feature request!

andres.aguiar · October 20, 2018, 1:49am

Hi!

Firebase/AWS have several services that need to be called with a token, so it makes sense for them to provide an ‘unauthenticated token’. However, in Auth0 there are no such services. If you build your own API, you can call it without being authenticated by not requiring a token in the header.

Can you help me understand what are you trying to accomplish?

Thanks

fabrice · October 24, 2018, 12:31pm

Hi Andres,
we have two use cases for the same problem:

User starts using our API before signup, then signup occurs after some onboarding. Ideally we’d like to keep the same user id and/or link to the signed up user account afterwards
Need for our app to make calls to Firebase/AWS as you mentioned (e.g. AWS AppSync). Currently we need to handle both token and something else for unauthenticated users. Would be much nice to have a simpler approach.

c.kapplmueller · March 14, 2019, 12:27pm

We are facing a quite similar usecase as @fabrice. So such flow would be very much appreciated!

fabrice · March 14, 2019, 1:14pm

Any update on this issue? We’ve used AWS Cognito as a workaround ( it has user pools and unauthenticated IDs) but it’s not satisfactory. Just a suggestion: it would be great to have a new type of Auth0 connection such as Guest or Browser and be able to link IDs later on with a DB/Social/… ID

fabrice · March 28, 2019, 7:06am

Hi Andres,
In our flows, Auth0 is used as an IdP, which provides the JWT token that we use to access AWS/Firebase APIs (Auth0 is configured there as an “OpenID Connect provider”).
For guest sessions /unauthenticated users, we cannot use the same approach therefore we have to generate a JWT token in another way: it’s not convenient to have different models/paths for unauth/auth users. It would be much more elegant if Auth0 had a feature to generate a guest identity+JWT token for unauth users that we could later on link identities

Topic		Replies	Views
Anonymous Users Feedback	6	4873	August 26, 2024
Anonymous User Flow Help jwt , claims	4	7001	December 11, 2021
Authenticate with only unique device id Help jwt , auth0	2	2769	November 4, 2021
One last chance for Auth0 to keep me as a customer. Firebase delegation solution needed. Help delegation , firebase	7	4439	March 2, 2018
Anonymous login Help	3	5651	February 16, 2020

JWT token for guest/anonymous/unauthenticated users

Related Topics