Spa oauth flow without user authentication prompt

ty.frith · May 19, 2023, 6:39pm

Hey there @tojeffraymond welcome to the community!

Interesting use case, I haven’t heard of anything similar personally. The only flow that wouldn’t require any user authentication is m2m. You could proxy a client credentials exchange through a backend via a SPA so that the credentials are handled on a backend and safe.

It’s fairly common for SPAs to proxy calls through a backend to call the Management API for example.This typically involves an authenticated user but I don’t see any reason you could handle this on a backend with an unauthenticated user. Here’s an FAQ that goes into this set up:

https://community.auth0.com/t/how-can-i-enable-users-to-change-their-email-address-from-a-spa-or-native-app/44064#the-following-diagram-describes-our-desired-flow-3

Not entirely sure that answers your question, but hope it at least gives some direction!

Topic		Replies	Views
How to authenticate SPA against API without User login Get Help	4	4047	November 22, 2019
Authenticating to APIs in the frontend Get Help auth0 , api , best-practices	2	3101	April 22, 2022
Help with Authorization flow choice for Angular SPA & Spring API Get Help auth0 , api , api-authorization	3	4023	August 26, 2019
SPA login via twitter, access twitter API Get Help auth0 , twitter	2	4578	January 25, 2019
Auth flow for SPA on a subdomain Get Help	2	4238	August 26, 2019

Spa oauth flow without user authentication prompt

Related topics