Auth0
Auth0 (now part of Okta) is a leading identity-as-a-service platform providing authentication and authorization for applications, APIs, and AI agents. It implements OpenID Connect, OAuth 2.0, SAML 2.0, WS-Federation, and SCIM, and exposes a Management API (OpenAPI 3.1, 221 paths, 2,567 schemas), an Authentication API, a My Account API, a My Organization API, FGA (Fine-Grained Authorization, OpenFGA / Zanzibar-based), and Auth0 for AI Agents — covering Token Vault, asynchronous authorization, Auth for MCP, and FGA for RAG.
APIs
Auth0 Management API
Comprehensive administrative API for managing Auth0 tenants — users, clients, connections, organizations, actions, event streams, branding, logs, roles, resource servers, and mo...
Auth0 Authentication API
Authentication endpoints implementing OpenID Connect, OAuth 2.0, SAML 2.0, WS-Federation, and Passwordless. Covers /authorize, /oauth/token (including Token Exchange and Device ...
Auth0 My Account API
User self-service endpoints for managing authentication factors and account settings. Recently extended with ACR enforcement for sensitive scopes.
Auth0 My Organization API
Organization-scoped endpoints for B2B customers to manage their own Organizations — IdP configuration, SCIM provisioning, and Home Realm Discovery.
Auth0 FGA (Fine-Grained Authorization)
Auth0 FGA is the hosted offering of OpenFGA, the CNCF authorization service inspired by Google's Zanzibar. Provides relationship-based access control via stores, authorization m...
Auth0 for AI Agents
Identity and authorization product line for AI agents. Bundles Token Vault (delegated API credentials for Google/GitHub/Slack etc.), asynchronous authorization (human-in-the-loo...
Collections
Auth0 Authentication API
POSTMANOpenFGA
POSTMANAuth0 Management API
POSTMANOpenFGA
OPENAuth0 Management API
OPENArazzo Workflows
Auth0 Create Client, Create Connection and Enable
Create a client application, create a connection, and enable the connection for the new client.
ARAZZOAuth0 Create Client and Grant Access to an Existing API
Create a client application, grant it access to an existing API audience, then read the grant back.
ARAZZOAuth0 Create Connection and Enable for a Client
Create an identity connection, enable it for a client application, then list the connection's enabled clients.
ARAZZOAuth0 Create Organization and Add Connection
Create an organization, associate an existing connection with it, then read the association back.
ARAZZOAuth0 Create Organization and Add Members
Create an organization, add existing users as members, then list the members.
ARAZZOAuth0 Create Organization, Add Member and Assign Member Roles
Create an organization, add a single user as a member, and assign that member organization-scoped roles.
ARAZZOAuth0 Create Organization, Attach Connection and Invite a User
Create an organization, attach an existing connection, and invite a user to authenticate through it.
ARAZZOAuth0 Create API, Role and Bind Permissions
Register an API with scopes, create a role, and associate the API's scopes with that role as permissions.
ARAZZOAuth0 Create Role and Add Permissions
Create a role, associate API permissions with it, then list the role's permissions to confirm.
ARAZZOAuth0 Create Role and Assign to a User
Create a role, assign an existing user to it, then list the role's users.
ARAZZOAuth0 Create User, Add to Organization with Roles
Create a database user, add them as a member of an existing organization, and assign organization-scoped roles.
ARAZZOAuth0 Create User and Assign Direct Permissions
Create a database user, assign direct API permissions, then list those permissions.
ARAZZOAuth0 Create User and Assign Roles
Create a database user, assign one or more tenant roles, then read the enriched profile back.
ARAZZOAuth0 Find Role by Name and Assign Users
Resolve a role by name filter and, when found, assign users to it.
ARAZZOAuth0 Find User by Email and Add to an Organization
Resolve a user by email and, when found, add them as a member of an existing organization.
ARAZZOAuth0 Find User by Email and Assign Role
Look up a user by email and, when found, assign tenant roles to that user.
ARAZZOAuth0 Create Organization and Invite a User
Create an organization, create an invitation for a new member, then read the invitation back.
ARAZZOAuth0 Offboard User and Revoke Grants
Find a user by email, list their authorization grants, and revoke the first grant when present.
ARAZZOAuth0 Provision Machine-to-Machine Application
Create an API (resource server), create a non-interactive client, and grant the client access to the API.
ARAZZOGraphQL
Auth0 GraphQL API
GRAPHQLPricing Plans
Rate Limits
FinOps
Auth0 Finops
FINOPSFeatures
Use Cases
Add secure, scalable authentication to customer-facing web and mobile applications with social login and passwordless options.
Federate with enterprise IdPs for employee authentication with SSO, MFA, and SCIM provisioning.
Provide multi-tenant identity for SaaS applications with per-customer organization management and custom login flows.
Secure REST and GraphQL APIs using OAuth 2.0 access tokens with audience and scope validation.
Issue OAuth 2.0 client credentials tokens for service-to-service API authentication without user involvement.
Issue dedicated agent identities; broker user-delegated tokens to third-party APIs via Token Vault; enforce FGA on RAG retrieval.
Auth for MCP (GA) secures Model Context Protocol servers using Client ID Metadata Registration and On-Behalf-Of Token Exchange.
Integrations
Auth0 is part of Okta, enabling combined workforce and customer identity capabilities.
Connect on-premises Active Directory and LDAP directories for enterprise user authentication.
Federate with Azure Active Directory for Microsoft ecosystem authentication and SSO.
Use Auth0 as identity provider for Salesforce apps and customer communities.
Secure AWS API Gateway and Lambda functions with Auth0-issued JWT access tokens; deliver Event Streams to EventBridge.
Send OTP and MFA verification codes via Twilio SMS and voice using Auth0 MFA integration.
Auth0 is available in the Stripe Projects developer preview.
Auth0 for AI Agents ships SDKs and adapters for the major agent frameworks.
27 Auth0 Agent Skills usable with Claude Code, Cursor, GitHub Copilot, and 40+ Agent-Skills-compatible coding assistants.
Solutions
Comprehensive CIAM solution for customer-facing applications with self-service registration, social login, and adaptive MFA.
Enterprise identity management for employees with federation, MFA, and SSO across all applications.
Multi-tenant identity infrastructure for SaaS platforms requiring per-customer branding, SSO, and user management.
Secure agent identity, token vaulting, async authorization, and FGA-powered RAG; named "Most Innovative AI Infrastructure Security Solution 2026."
Event Specifications
Auth0 Log Streams and Actions Event Delivery
AsyncAPI 2.6 description of Auth0's two primary outbound event-delivery surfaces: 1. Log Streams — Custom Webhook (HTTP) destination Auth0 streams tenant log events to a custome...
ASYNCAPI