M2M Applications - Client credentials flow so a user can consume an API with a secret key

markd · July 18, 2020, 3:49pm

Welcome to the Community! Are there actual users present in these authentication flows? Client credentials is meant to be used when there is no user present. The term “machine-to-machine” can be misleading here … you can have one API talking to another API, but there can still be a user involved, in which case you should be using something like the authorization code grant flow.

Topic		Replies	Views
API credentials for clients in a multi-tenant setup Get Help multi-tenant , m2m	5	5225	June 28, 2022
Single M2M app to give access to API to many users Get Help forum	6	3273	June 13, 2022
Support for thousands of client credentials per M2M application Product Feedback	1	63	April 30, 2025
Newbie questions for Auth0 API Authentication Get Help api	6	2491	July 6, 2022
Allow specific outside customers access to our API server with m2m machine to machine token Get Help api , m2m , m2m-tokens	4	3272	May 4, 2021

M2M Applications - Client credentials flow so a user can consume an API with a secret key

Related topics