Hi. I’m new to all this auth20 stuff so please be easy. Dot Net C# ASP.
I expose a bunch of apis. I have “clients” who access these apis.
I have code that
- has UI implementing Auth0 login. Works great.
- Secure API. Gets bearer token and validates it. Works great.
How do I tell client “Hey, to use my api now, make this API call with ur username, password - and then pass in token”?.
All I see is two scenarios:
- User login manually via web app
- Machine to machine api setup with client id/client secret. No name, no way of knowing which client called me.
How can I setup my clients to get a token and call me so I know who it is?
Also keep logging, diagnostics, azure graphs so I can bill them for usage, etc.