The right way to call Auth0 APIs in a web app?

hirschtomer · October 5, 2020, 7:51am

Hey,

I am planning to write an app that structured from:

SPA - React app
BFF - Backend for frontend (there is a chance that I will have another BFF for a react native consumer)
Gateway - a single source of truth for my API’s
Couple of Micro-Services

I am going to use implicit flow.

My question is where is the right place to call to the auth0 API?

dan.woda · October 5, 2020, 10:06pm

Welcome to Auth0!

Why not use auth code + PKCE?

Authenticate in your SPA (or native app), and request tokens for your APIs/backend.

hirschtomer · October 6, 2020, 10:19am

Hey Dan,

Thanks for replying after I read the documentation: Which OAuth 2.0 Flow Should I Use?

I think that I will go with your recommendations.

Thanks!

Regards,
Tomer.

dan.woda · October 6, 2020, 3:27pm

Let us know if you have any questions!

system · October 21, 2020, 3:27pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Frontend or backend authentication? Help auth0 , api , login	1	7079	August 24, 2020
How to call backend/API from static SPA? Help	2	3193	August 15, 2019
Programmatically get a access token from auth0 Help apis , application	0	304	March 1, 2024
Setting up a SPA + API combo with React and .NET Core Help jwt , auth0 , api , spa , cookie	2	3333	March 5, 2024
SPA & Custom API Help management-api , clients	2	1176	August 12, 2023