Obtaining connection metadata in Auth0 rule

jacob.wang · March 1, 2018, 9:51am

I went through the docs as well as checked the available methods on the auth0 management object available in rules - there doesn’t seem to be a way to access the connection metadata in the rule.

What I’m trying to do:
We have multiple Salesforce Community connections (and our customers can create their own). In the JWT we need a claim stating which community this user logged in to (as the same Salesforce user can belong to multiple communities).
The simplest solution I’m trying to implement now is to add the community ID to the custom connection’s metadata, and in the rules we will fetch it from the connection metadat put it in the JWT claims.

Is there a way to access connection metadata in rules?

richard.dowinton · March 8, 2018, 5:36pm

You can read connection metadata via the management API.

While it’s possible to use the management API with the access token provided by auth0.access_token as described here, it lacks the scope (read:connections) you need to read the connection metadata.

For this reason, you will need to request an access token via the client_credentials grant in the rule. You should create a specific non-interactive client for this and grant it only the read:connections scope.

...
  var request = require('request@2.56.0');
  request.post({
    url: 'https://your-tenant.auth0.com/oauth/token',
    headers: {
      'Content-Type': 'application/json'
    },
    json: {
      'client_id': '...',
      'client_secret': '...',
      'audience': 'https://your-tenant.auth0.com/api/v2/',
      'grant_type': 'client_credentials',
      'scope': 'read:connections'
    }
  },
  function(err, response, body) {
    if (err) {
      return callback(err);
    }
    if (response.statusCode !== 200) {
      return callback(new Error(body));
    }
    
    var accessToken = body.accessToken;
...

You can then retrieve the connection metadata with the access token:

...
    request({
      url: 'https//your-tenant.auth0.com/api/v2/connections',
      headers: {
        Authorization: 'Bearer ' + accessToken
      },
      qs: {
        'name': context.connection
      }
    }
...

system · August 28, 2019, 2:38pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Get app_metadata Stored In Auth0 using Social Connection Help management-api , connections-management-api	9	1169	August 31, 2023
Enable user_metadata and app_metadata on JWT token JWT.io app_metadata , user_metadata	6	13146	August 19, 2019
Adding metadata to jwt token Help jwt , rules , user-metadata	4	19499	September 30, 2020
Add Custom Claims to User Profile (User / App Metadata) Help jwt , auth0 , rules	4	4580	March 31, 2020
How to get APP_METADATA from user while using @auth0/nextjs-auth0 Help management-api , users	1	11	October 6, 2024

Obtaining connection metadata in Auth0 rule

Related Topics