You can retrieve Account Summary info via the Support API

Hello, everyone!

We have multiple tenants in our Auth0 “umbrella” account, and recently started allocating the costs for each tenant to the associated business unit. We first did this manually by downloading the spreadsheet under User Avatar > Account Usage, but needed a way to do it automatically.

This information isn’t available via the Management API without having to retrieve log data and manually parse through it (which takes forever), so we started digging and found the Support API (https://support-api.auth0.com/api/reports/).

Using the Support API turned out to be quite the task though, as there is no documentation about how to talk to it. That’s why I’m making this post, just in case someone else out there needs to get this info easily as well.

Ultimately, we were able to get successful responses from the API using the password realm grant.

To do this, you’ll need some info:

  • Username of user with access to view Account Summary Info (we used a service account we created)
  • That user’s password

After that, you’ll want to hit this endpoint to get an access token:
POST https://auth0.auth0.com/oauth/token

With the following request body (type of x-www-form-urlencoded):
client_id:YOUR_CLIENT_ID_HERE
username:USERNAME_HERE
password:PASSWORD_HERE
realm:auth0
grant_type:http://auth0.com/oauth/grant-type/password-realm
audience:urn:support-center-api

This call will return the access_token you’ll need to make subsequent calls to the Support API.

A sample call might be:
https://support-api.auth0.com/api/reports/features?tenantId=YOUR_PRIMARY_TENANT_NAME

This endpoint returns a count of machine to machine tokens used by all tenants under your umbrella account by month.

I hope this is helpful to someone, cheers!

Oh! And a side note here. The CLIENT_ID value isn’t in plain view anywhere in Auth0 that I could tell, so I got it by decoding an access token I got in the browser.

If you grab that token and head to jwt.io, you can decode it and get the azp property, which is your client id.

Good luck!