Customer is looking to limit the number of token requests on a client by client basis. The intention is to ensure no single client can consume the rate limit for a particular api.
I can’t see any options to limit from the UI. I can see that M2M does trigger the Login flow, so I have options in Actions.
This post talks to monitoring global endpoint usage.
What I don’t have is an approach to introducing a per client limit. Any thoughts here would be appreciated.
So whilst there’s currently no specific product configurable limitations that can be applied to Auth0 M2M token allocations, we do have some guidance which we’ve developed for our customers that can help in a number of different scenarios (see attached). Hope this helps Optimizing External M2M Token Reuse.pdf (301.0 KB)