Ruby-auth0 : delete_user

josh.cunningham · December 20, 2018, 3:54pm

@MichaelRigart - I can help out here.

204 is the code for “this thing is gone” so passing a user ID that does not exist will just confirm that it’s not there. That code will tell you that the user ID is gone, regardless of what you send it. If you want to check for the existence of a user before that, you’ll want to get the user first:

Corresponding method:

github.com

auth0/ruby-auth0/blob/master/lib/auth0/api/v2/users.rb#L67


      
          
          
# Delete all users - USE WITH CAUTION
          # @deprecated - 4.8.0, endpoint has been removed
          def delete_users
            delete(users_path)
          end
          
          
# Retrieves a user given a user_id
          # @see https://auth0.com/docs/api/v2#!/Users/get_users_by_id
          # @param user_id [string] The user_id of the user to retrieve.
          # @param fields [string] A comma separated list of fields to include or exclude from the result.
          # @param include_fields [boolean] True if the fields specified are to be included in the result, false otherwise.
          #
          # @return [json] Returns the user with the given user_id if it exists.
          def user(user_id, fields: nil, include_fields: true)
            raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
            path = "#{users_path}/#{user_id}"
            request_params = {
              fields:         fields,
              include_fields: include_fields
            }

For your second question … the model we generally use is that the user data is under control of the tenant/account that manages the user store. Users can update their own passwords (reset password link) but, aside from that, your app will need to decide what a user can and cannot do and implement that via the Management API. Using the session in your app to confirm that an action can be taken, you can implement a profile edit screen and do a client credentials grant to perform the changes:

github.com

auth0/ruby-auth0/blob/master/lib/auth0/api/authentication_endpoints.rb#L14


      
          require 'jwt'
          
          
module Auth0
            module Api
              # {https://auth0.com/docs/api/authentication}
              # Methods to use the Authentication API
              module AuthenticationEndpoints
                UP_AUTH = 'Username-Password-Authentication'.freeze
                JWT_BEARER = 'urn:ietf:params:oauth:grant-type:jwt-bearer'.freeze
          
          
      # Request an API access token using a Client Credentials grant
                # @see https://auth0.com/docs/api-auth/tutorials/client-credentials
                # @param audience [string] API audience to use
                # @param organization [string] Organization ID
                # @return [json] Returns the API token
                def api_token(
                  client_id: @client_id,
                  client_secret: @client_secret,
                  organization: @organization,
                  audience: nil
                )

As of v4.6.0, that will be performed automatically if you don’t pass in an API token.

Topic		Replies	Views
Delete User by ID with API is not deleting user Get Help auth0 , api , delete-user , user	5	6274	May 26, 2020
deleteUser returns 204 when called twice Get Help management_api , delete-user	2	1479	January 21, 2023
Node managementClient deleteUser return nothing Get Help node-auth0	2	2417	October 27, 2021
Auth0 Management api v2 delete returning incorrect 204 status code Get Help management-api , delete-user , code	4	5382	March 2, 2018
Auth0 node.js managementClient > deleteUser return nothing Get Help node-auth0	10	5810	December 25, 2019

Ruby-auth0 : delete_user

Related topics