Well, you’re halfway there. If you can already create users with rules, then granting direct access to some apps is easy:
In my case, I have one logical API in auth0 which refers to my entire microservices architecture. In it are defined some permissions. For example:
Now, in each of your applications make sure you set the audience to that API so that you get an access token which is able to access that.
I’ll assume you’ve already gotten this far, so to continue to the answer:
- Simply create a Role which has the desired API permission
- Add a user with that role.
All done!
If you want to add all 10,000 users + roles in a batch you can do that too, using the Management API.