We selected the Multi-tenant by application approach. So for each tenant we have created a unique auth0 application. Now we want to allow 3rd parties to integrate with our public API.
One approach is to generate a unique application per 3rd party per tenant, and give the 3rd party the client_id and client_secret. The 3rd part can simply make client_credential exchanges with auth0 to access the public API.
Is there an approach where we could give the 3rd party a single application for all tenants, and allow the end user to consent to that 3rd party having access to their tenant? That way each tenant does not need to generate a new client secret for each integration they make?