Using Auth0 to issue/revoke api keys?

cucho · May 10, 2018, 1:49pm

In my application (in ASP NET Core 2, if it matters):

(1) Administrator creates a User.
(2) User logs in to an admin page using a username/password, social login, Active Directory, etc.
(3) User creates multiple apikey/secret pairs in the admin page.
(4) User consumes the API using one of the apikey/secret pairs as Http Basic Auth.
(5) User revokes a specific apikey/secret pair in the admin page.

The apikeys are used to identify the User in the API and may have different permissions (to read, to write, etc) defined in the apikey creation (3).

I understand that Auth0 may help with the authentication and authorization of the administration page ie (1) and (2) above. But does it work for issuing, validating and revoking api keys ie (3) to (5) above?

James.Morrison · December 18, 2018, 6:25pm

Hey @cucho

As it has been more than a few months since this topic was opened and there has been no reply or further information provided from the community as to the existence of the issue we would like to check if you are still facing the described challenge?

We are more than happy to assist in any way! If the issue is still out there please let us know so we can create a new thread for better visibility, otherwise we’ll close this one in week’s time.

Thank you!

James.Morrison · December 25, 2018, 10:25am

This topic was automatically closed 6 days after the last reply. New replies are no longer allowed.