I’ve almost figured out how the Management API works. However I am running into a few issue when I submit a “User Update” API post. When I’m in the Auth0 Management API pages and make a API post under Test this endpoint" the update occurs just fine. However when I submit API post from my website I get a response of 200, but the user update does not occur. Not sure if I am submitting the scope properly.
I am using postman to test:
URL I’m posting to: {{base_url}}/users/auth0%7C6494bb02f1ac1401362d9cca
What exactly are you attempting to update? The update:users scope is required by a Management API access token (associated with a m2m app) to update a user - Scopes are not directly associated with users but rather with the applications. The scopes in Auth0 represent the permissions that an application (client) can have.
When you make an authorize request, you request these scopes, and they get included in the access token if the user grants permission. This is part of the OAuth 2.0 framework, which is designed to let applications have limited access to user accounts.
I am trying to update the given_name, family_name & name of a user account. I am sending the Bearer token and I certain the update:users scope is allowed. Again right now I am testing with Postman and seem to get a status of 200 but the user account details does not change unless I submit under the Auth0 Management documentation page.
Do you mind sharing the PATCH code from Postman (remove access token)? You can grab it by clicking the </> icon in the upper left corner. Here is mine for example: