Multiple clients and different access levels in machine to machine API


I have one .NET 6 API Application which can be consumed by multiple clients/customers/companies. I have created an API and application in auth0 portal and could successfully test authorized endpoint by obtaining the token and access to authorized endpoint. Now, I have to achieve the following scenario:

Client 1
Client 2

GetProducts action in Products controller. Client 1 Can access, Client 2 cannot.
I want to have possibility to define what each client can or cannot do in my API on each controller/action.

How to achieve that?


Hi @maxr,

Welcome to the Auth0 Community!

You can create permissions in your API and grant access on a per-application basis (client permissions for M2M apps) or you can grant individual permission to users directly or via roles.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.