Auth0 website screenshot

Auth0

Auth0 (now part of Okta) is a leading identity-as-a-service platform providing authentication and authorization for applications, APIs, and AI agents. It implements OpenID Connect, OAuth 2.0, SAML 2.0, WS-Federation, and SCIM, and exposes a Management API (OpenAPI 3.1, 221 paths, 2,567 schemas), an Authentication API, a My Account API, a My Organization API, FGA (Fine-Grained Authorization, OpenFGA / Zanzibar-based), and Auth0 for AI Agents — covering Token Vault, asynchronous authorization, Auth for MCP, and FGA for RAG.

6 APIs 26 Features
AI AgentsAuthenticationAuthorizationFGAIdentity ManagementMCPOAuthOktaOpenID ConnectSAMLSecuritySCIM

APIs

Auth0 Management API

Comprehensive administrative API for managing Auth0 tenants — users, clients, connections, organizations, actions, event streams, branding, logs, roles, resource servers, and mo...

Auth0 Authentication API

Authentication endpoints implementing OpenID Connect, OAuth 2.0, SAML 2.0, WS-Federation, and Passwordless. Covers /authorize, /oauth/token (including Token Exchange and Device ...

Auth0 My Account API

User self-service endpoints for managing authentication factors and account settings. Recently extended with ACR enforcement for sensitive scopes.

Auth0 My Organization API

Organization-scoped endpoints for B2B customers to manage their own Organizations — IdP configuration, SCIM provisioning, and Home Realm Discovery.

Auth0 FGA (Fine-Grained Authorization)

Auth0 FGA is the hosted offering of OpenFGA, the CNCF authorization service inspired by Google's Zanzibar. Provides relationship-based access control via stores, authorization m...

Auth0 for AI Agents

Identity and authorization product line for AI agents. Bundles Token Vault (delegated API credentials for Google/GitHub/Slack etc.), asynchronous authorization (human-in-the-loo...

Collections

OpenFGA

POSTMAN

OpenFGA

OPEN

Arazzo Workflows

Auth0 Create Client, Create Connection and Enable

Create a client application, create a connection, and enable the connection for the new client.

ARAZZO

Auth0 Create Client and Grant Access to an Existing API

Create a client application, grant it access to an existing API audience, then read the grant back.

ARAZZO

Auth0 Create Connection and Enable for a Client

Create an identity connection, enable it for a client application, then list the connection's enabled clients.

ARAZZO

Auth0 Create Organization and Add Connection

Create an organization, associate an existing connection with it, then read the association back.

ARAZZO

Auth0 Create Organization and Add Members

Create an organization, add existing users as members, then list the members.

ARAZZO

Auth0 Create Organization, Add Member and Assign Member Roles

Create an organization, add a single user as a member, and assign that member organization-scoped roles.

ARAZZO

Auth0 Create Organization, Attach Connection and Invite a User

Create an organization, attach an existing connection, and invite a user to authenticate through it.

ARAZZO

Auth0 Create API, Role and Bind Permissions

Register an API with scopes, create a role, and associate the API's scopes with that role as permissions.

ARAZZO

Auth0 Create Role and Add Permissions

Create a role, associate API permissions with it, then list the role's permissions to confirm.

ARAZZO

Auth0 Create Role and Assign to a User

Create a role, assign an existing user to it, then list the role's users.

ARAZZO

Auth0 Create User, Add to Organization with Roles

Create a database user, add them as a member of an existing organization, and assign organization-scoped roles.

ARAZZO

Auth0 Create User and Assign Direct Permissions

Create a database user, assign direct API permissions, then list those permissions.

ARAZZO

Auth0 Create User and Assign Roles

Create a database user, assign one or more tenant roles, then read the enriched profile back.

ARAZZO

Auth0 Find Role by Name and Assign Users

Resolve a role by name filter and, when found, assign users to it.

ARAZZO

Auth0 Find User by Email and Add to an Organization

Resolve a user by email and, when found, add them as a member of an existing organization.

ARAZZO

Auth0 Find User by Email and Assign Role

Look up a user by email and, when found, assign tenant roles to that user.

ARAZZO

Auth0 Create Organization and Invite a User

Create an organization, create an invitation for a new member, then read the invitation back.

ARAZZO

Auth0 Offboard User and Revoke Grants

Find a user by email, list their authorization grants, and revoke the first grant when present.

ARAZZO

Auth0 Provision Machine-to-Machine Application

Create an API (resource server), create a non-interactive client, and grant the client access to the API.

ARAZZO

GraphQL

Pricing Plans

Auth0 Plans Pricing

4 plans

PLANS

Rate Limits

Auth0 Rate Limits

9 limits

RATE LIMITS

FinOps

Auth0 Finops

FINOPS

Features

Free: 25,000 MAUs, passwordless, social connections, SCIM, Self-Service SSO
Essentials: $35/mo (B2C) or $150/mo (B2B) starting at 500 MAUs
Professional: $240/mo (B2C) or $800/mo (B2B)
Enterprise custom: 99.99% SLA, private deployment
Authentication API (OAuth 2.0 / OIDC / SAML / WS-Federation)
Management API (OpenAPI 3.1 Beta, 221 paths, 2,567 schemas)
My Account API (user self-service)
My Organization API (B2B org self-service, SCIM)
FGA — Fine-Grained Authorization (OpenFGA / Zanzibar)
Auth0 for AI Agents — Token Vault, async auth, Auth for MCP, FGA for RAG (GA, 50% of base)
M2M Tokens add-on ($30–$1,200/mo)
Authentication API: 100 RPS Free, 200 RPS Paid
Management API: 2 RPS Free, 15 RPS Paid
Public Performance Burst — Enterprise add-on (2x/3x/4x for up to 48h/month)
Universal Login + Lock customizable UI + ACUL Screen Generator
Actions for custom auth pipeline logic (Node.js)
Event Streams (GA) to EventBridge, Actions, webhooks
Multi-Resource Refresh Tokens (MRRT) GA
Online Refresh Tokens (Beta, session-bound for SPAs)
FGA Permissions Index (Developer Preview)
Organization Discovery by Domain (GA)
Tenant log streaming to SIEM
Bot Detection and Anomaly Detection
Self-Service SSO with SCIM provisioning
Verifiable Credentials
3B+ attacks blocked monthly; 10B+ authentications monthly; 99.99% uptime SLA

Use Cases

Customer Identity

Add secure, scalable authentication to customer-facing web and mobile applications with social login and passwordless options.

Workforce Identity

Federate with enterprise IdPs for employee authentication with SSO, MFA, and SCIM provisioning.

B2B Identity

Provide multi-tenant identity for SaaS applications with per-customer organization management and custom login flows.

API Authorization

Secure REST and GraphQL APIs using OAuth 2.0 access tokens with audience and scope validation.

Machine-to-Machine Auth

Issue OAuth 2.0 client credentials tokens for service-to-service API authentication without user involvement.

AI Agent Identity

Issue dedicated agent identities; broker user-delegated tokens to third-party APIs via Token Vault; enforce FGA on RAG retrieval.

MCP Server Authentication

Auth for MCP (GA) secures Model Context Protocol servers using Client ID Metadata Registration and On-Behalf-Of Token Exchange.

Integrations

Okta

Auth0 is part of Okta, enabling combined workforce and customer identity capabilities.

Active Directory / LDAP

Connect on-premises Active Directory and LDAP directories for enterprise user authentication.

Azure AD / Entra ID

Federate with Azure Active Directory for Microsoft ecosystem authentication and SSO.

Salesforce

Use Auth0 as identity provider for Salesforce apps and customer communities.

AWS

Secure AWS API Gateway and Lambda functions with Auth0-issued JWT access tokens; deliver Event Streams to EventBridge.

Twilio

Send OTP and MFA verification codes via Twilio SMS and voice using Auth0 MFA integration.

Stripe

Auth0 is available in the Stripe Projects developer preview.

LangChain / LlamaIndex / Vercel AI SDK / Cloudflare Agents / Firebase Genkit

Auth0 for AI Agents ships SDKs and adapters for the major agent frameworks.

Claude Code / Cursor / GitHub Copilot

27 Auth0 Agent Skills usable with Claude Code, Cursor, GitHub Copilot, and 40+ Agent-Skills-compatible coding assistants.

Solutions

Customer Identity Access Management

Comprehensive CIAM solution for customer-facing applications with self-service registration, social login, and adaptive MFA.

Workforce Identity

Enterprise identity management for employees with federation, MFA, and SSO across all applications.

B2B SaaS Identity

Multi-tenant identity infrastructure for SaaS platforms requiring per-customer branding, SSO, and user management.

AI Agent Security

Secure agent identity, token vaulting, async authorization, and FGA-powered RAG; named "Most Innovative AI Infrastructure Security Solution 2026."

Event Specifications

Auth0 Log Streams and Actions Event Delivery

AsyncAPI 2.6 description of Auth0's two primary outbound event-delivery surfaces: 1. Log Streams — Custom Webhook (HTTP) destination Auth0 streams tenant log events to a custome...

ASYNCAPI

Semantic Vocabularies

Auth0 Context

38 classes · 0 properties

JSON-LD

API Governance Rules

Auth0 API Rules

3 rules · 3 warnings

SPECTRAL

Auth0 API Rules

2 rules · 1 warnings 1 info

SPECTRAL

Auth0 API Rules

4 rules · 1 errors 3 warnings

SPECTRAL

JSON Structure

Auth0 Action Structure

0 properties

JSON STRUCTURE

Auth0 Client Structure

0 properties

JSON STRUCTURE

Auth0 Connection Structure

0 properties

JSON STRUCTURE

Auth0 Eventstream Structure

0 properties

JSON STRUCTURE

Auth0 Fga Model Structure

0 properties

JSON STRUCTURE

Auth0 Fga Tuple Structure

0 properties

JSON STRUCTURE

Auth0 Organization Member Structure

0 properties

JSON STRUCTURE

Auth0 Organization Structure

0 properties

JSON STRUCTURE

Auth0 Resourceserver Structure

0 properties

JSON STRUCTURE

Auth0 Role Structure

0 properties

JSON STRUCTURE

Auth0 Structure

0 properties

JSON STRUCTURE

Auth0 Tenant Structure

0 properties

JSON STRUCTURE

Auth0 User Structure

0 properties

JSON STRUCTURE

Example Payloads

Auth0 Authorize Pkce Example

2 fields

EXAMPLE

Auth0 Fga Check Example

2 fields

EXAMPLE

Auth0 User Create Example

2 fields

EXAMPLE

Visuals

View API subway map

Resources

🔗
PostmanWorkspace
PostmanWorkspace
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
LinkedIn
LinkedIn
🔗
Website
Website
🔗
Documentation
Documentation
🚀
GettingStarted
GettingStarted
📰
Blog
Blog
📝
Signup
Signup
🔗
Login
Login
💰
Pricing
Pricing
🔗
Plans
Plans
🔗
RateLimits
RateLimits
🔗
FinOps
FinOps
👥
GitHubOrganization
GitHubOrganization
🟢
StatusPage
StatusPage
🔗
Community
Community
💬
Support
Support
📜
TermsOfService
TermsOfService
📜
PrivacyPolicy
PrivacyPolicy
📦
SDKs
SDKs
📄
ChangeLog
ChangeLog
🔗
AI
AI
🔗
MCPServer
MCPServer
🔗
AgentSkills
AgentSkills
🔗
Vocabulary
Vocabulary
🔗
JSONLD
JSONLD

Sources

Raw ↑
opencollection: 1.0.0
info:
  name: Auth0 Management API
  version: '2.0'
request:
  auth:
    type: bearer
    token: '{{bearerToken}}'
items:
- info:
    name: actions
    type: folder
  items:
  - info:
      name: Get Actions
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/actions
      params:
      - name: triggerId
        value: ''
        type: query
        description: An actions extensibility point.
      - name: actionName
        value: ''
        type: query
        description: The name of the action to retrieve.
      - name: deployed
        value: ''
        type: query
        description: Optional filter to only retrieve actions that are deployed.
      - name: page
        value: ''
        type: query
        description: Use this field to request a specific page of the list results.
      - name: per_page
        value: ''
        type: query
        description: The maximum number of results to be returned by the server in single response. 20 by default
      - name: installed
        value: ''
        type: query
        description: Optional. When true, return only installed actions. When false, return only custom actions. Returns all
          actions by default.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve all actions.

      '
  - info:
      name: Create an Action
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/actions/actions
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Create an action. Once an action is created, it must be deployed, and then bound to a trigger before it will be
      executed as part of a flow.

      '
  - info:
      name: Get an Action's Versions
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/actions/:actionId/versions
      params:
      - name: actionId
        value: ''
        type: path
        description: The ID of the action.
      - name: page
        value: ''
        type: query
        description: Use this field to request a specific page of the list results.
      - name: per_page
        value: ''
        type: query
        description: This field specify the maximum number of results to be returned by the server. 20 by default
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve all of an action''s versions. An action version is created whenever an action is deployed. An action version
      is immutable, once created.

      '
  - info:
      name: Get a Specific Version of an Action
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/actions/:actionId/versions/:id
      params:
      - name: actionId
        value: ''
        type: path
        description: The ID of the action.
      - name: id
        value: ''
        type: path
        description: The ID of the action version.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve a specific version of an action. An action version is created whenever an action is deployed. An action
      version is immutable, once created.

      '
  - info:
      name: Roll Back to a Previous Action Version
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/actions/actions/:actionId/versions/:id/deploy
      params:
      - name: id
        value: ''
        type: path
        description: The ID of an action version.
      - name: actionId
        value: ''
        type: path
        description: The ID of an action.
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Performs the equivalent of a roll-back of an action to an earlier, specified version. Creates a new, deployed action
      version that is identical to the specified version. If this action is currently bound to a trigger, the system will
      begin executing the newly-created version immediately.

      '
  - info:
      name: Get an Action
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/actions/:id
      params:
      - name: id
        value: ''
        type: path
        description: The ID of the action to retrieve.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve an action by its ID.

      '
  - info:
      name: Update an Action
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/actions/actions/:id
      params:
      - name: id
        value: ''
        type: path
        description: The id of the action to update.
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Update an existing action. If this action is currently bound to a trigger, updating it will <strong>not</strong>
      affect any user flows until the action is deployed.

      '
  - info:
      name: Delete an Action
      type: http
    http:
      method: DELETE
      url: https://{tenantDomain}/api/v2/actions/actions/:id
      params:
      - name: id
        value: ''
        type: path
        description: The ID of the action to delete.
      - name: force
        value: ''
        type: query
        description: Force action deletion detaching bindings
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Deletes an action and all of its associated versions. An action must be unbound from all triggers before it can
      be deleted.

      '
  - info:
      name: Deploy an Action
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/actions/actions/:id/deploy
      params:
      - name: id
        value: ''
        type: path
        description: The ID of an action.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Deploy an action. Deploying an action will create a new immutable version of the action. If the action is currently
      bound to a trigger, then the system will begin executing the newly deployed version of the action immediately. Otherwise,
      the action will only be executed as a part of a flow once it is bound to that flow.

      '
  - info:
      name: Test an Action
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/actions/actions/:id/test
      params:
      - name: id
        value: ''
        type: path
        description: The id of the action to test.
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Test an action. After updating an action, it can be tested prior to being deployed to ensure it behaves as expected.

      '
  - info:
      name: Get an Execution
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/executions/:id
      params:
      - name: id
        value: ''
        type: path
        description: The ID of the execution to retrieve.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve information about a specific execution of a trigger. Relevant execution IDs will be included in tenant
      logs generated as part of that authentication flow. Executions will only be stored for 10 days after their creation.

      '
  - info:
      name: List Actions Modules
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/modules
      params:
      - name: page
        value: ''
        type: query
        description: Page index of the results to return. First page is 0.
      - name: per_page
        value: ''
        type: query
        description: Number of results per page. Paging is disabled if parameter not sent.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve a paginated list of all Actions Modules with optional filtering and totals.
  - info:
      name: Create a New Actions Module
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/actions/modules
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Create a new Actions Module for reusable code across actions.
  - info:
      name: Get a Specific Actions Module by ID
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/modules/:id
      params:
      - name: id
        value: ''
        type: path
        description: The ID of the action module to retrieve.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve details of a specific Actions Module by its unique identifier.
  - info:
      name: Update a Specific Actions Module
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/actions/modules/:id
      params:
      - name: id
        value: ''
        type: path
        description: The ID of the action module to update.
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update properties of an existing Actions Module, such as code, dependencies, or secrets.
  - info:
      name: Delete a Specific Actions Module by ID
      type: http
    http:
      method: DELETE
      url: https://{tenantDomain}/api/v2/actions/modules/:id
      params:
      - name: id
        value: ''
        type: path
        description: The ID of the Actions Module to delete.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Permanently delete an Actions Module. This will fail if the module is still in use by any actions.
  - info:
      name: List All Actions Using an Actions Module
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/modules/:id/actions
      params:
      - name: id
        value: ''
        type: path
        description: The unique ID of the module.
      - name: page
        value: ''
        type: query
        description: Page index of the results to return. First page is 0.
      - name: per_page
        value: ''
        type: query
        description: Number of results per page.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Lists all actions that are using a specific Actions Module, showing which deployed action versions reference this
      Actions Module.
  - info:
      name: Rollback an Actions Module to a Previous Version
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/actions/modules/:id/rollback
      params:
      - name: id
        value: ''
        type: path
        description: The unique ID of the module to roll back.
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Rolls back an Actions Module's draft to a previously created version. This action copies the code, dependencies,
      and secrets from the specified version into the current draft.
  - info:
      name: List All Versions of an Actions Module
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/modules/:id/versions
      params:
      - name: id
        value: ''
        type: path
        description: The unique ID of the module.
      - name: page
        value: ''
        type: query
        description: Use this field to request a specific page of the list results.
      - name: per_page
        value: ''
        type: query
        description: The maximum number of results to be returned by the server in a single response. 20 by default.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: List all published versions of a specific Actions Module.
  - info:
      name: Create a New Version of an Actions Module
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/actions/modules/:id/versions
      params:
      - name: id
        value: ''
        type: path
        description: The ID of the action module to create a version for.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Creates a new immutable version of an Actions Module from the current draft version. This publishes the draft as
      a new version that can be referenced by actions, while maintaining the existing draft for continued development.
  - info:
      name: Get a Specific Version of an Actions Module
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/modules/:id/versions/:versionId
      params:
      - name: id
        value: ''
        type: path
        description: The unique ID of the module.
      - name: versionId
        value: ''
        type: path
        description: The unique ID of the module version to retrieve.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve the details of a specific, immutable version of an Actions Module.
  - info:
      name: Get Triggers
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/triggers
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve the set of triggers currently available within actions. A trigger is an extensibility point to which actions
      can be bound.

      '
  - info:
      name: Get Trigger Bindings
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/actions/triggers/:triggerId/bindings
      params:
      - name: triggerId
        value: ''
        type: path
        description: An actions extensibility point.
      - name: page
        value: ''
        type: query
        description: Use this field to request a specific page of the list results.
      - name: per_page
        value: ''
        type: query
        description: The maximum number of results to be returned in a single request. 20 by default
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve the actions that are bound to a trigger. Once an action is created and deployed, it must be attached (i.e.
      bound) to a trigger so that it will be executed as part of a flow. The list of actions returned reflects the order in
      which they will be executed during the appropriate flow.

      '
  - info:
      name: Update Trigger Bindings
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/actions/triggers/:triggerId/bindings
      params:
      - name: triggerId
        value: ''
        type: path
        description: An actions extensibility point.
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update the actions that are bound (i.e. attached) to a trigger. Once an action is created and deployed, it must
      be attached (i.e. bound) to a trigger so that it will be executed as part of a flow. The order in which the actions
      are provided will determine the order in which they are executed.
- info:
    name: anomaly
    type: folder
  items:
  - info:
      name: Check If an IP Address Is Blocked
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/anomaly/blocks/ips/:id
      params:
      - name: id
        value: ''
        type: path
        description: IP address to check.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Check if the given IP address is blocked via the <a href="https://auth0.com/docs/configure/attack-protection/suspicious-ip-throttling">Suspicious
      IP Throttling</a> due to multiple suspicious attempts.
  - info:
      name: Remove the Blocked IP Address
      type: http
    http:
      method: DELETE
      url: https://{tenantDomain}/api/v2/anomaly/blocks/ips/:id
      params:
      - name: id
        value: ''
        type: path
        description: IP address to unblock.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Remove a block imposed by <a href="https://auth0.com/docs/configure/attack-protection/suspicious-ip-throttling">Suspicious
      IP Throttling</a> for the given IP address.
- info:
    name: attack-protection
    type: folder
  items:
  - info:
      name: Get Bot Detection Settings
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/attack-protection/bot-detection
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Get the Bot Detection configuration of your tenant.
  - info:
      name: Update Bot Detection Settings
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/attack-protection/bot-detection
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update the Bot Detection configuration of your tenant.
  - info:
      name: Get Breached Password Detection Settings
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/attack-protection/breached-password-detection
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve details of the Breached Password Detection configuration of your tenant.
  - info:
      name: Update Breached Password Detection Settings
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/attack-protection/breached-password-detection
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update details of the Breached Password Detection configuration of your tenant.
  - info:
      name: Get Brute-force Settings
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/attack-protection/brute-force-protection
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve details of the Brute-force Protection configuration of your tenant.
  - info:
      name: Update Brute-force Settings
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/attack-protection/brute-force-protection
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update the Brute-force Protection configuration of your tenant.
  - info:
      name: Get the CAPTCHA Configuration for a Tenant
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/attack-protection/captcha
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Get the CAPTCHA configuration for your client.
  - info:
      name: Partial Update for CAPTCHA Configuration
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/attack-protection/captcha
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update existing CAPTCHA configuration for your client.
  - info:
      name: Get Suspicious IP Throttling Settings
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/attack-protection/suspicious-ip-throttling
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve details of the Suspicious IP Throttling configuration of your tenant.
  - info:
      name: Update Suspicious IP Throttling Settings
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/attack-protection/suspicious-ip-throttling
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update the details of the Suspicious IP Throttling configuration of your tenant.
- info:
    name: branding
    type: folder
  items:
  - info:
      name: Get Branding Settings
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/branding
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve branding settings.
  - info:
      name: Update Branding Settings
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/branding
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update branding settings.
  - info:
      name: Get a List of Phone Providers
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/branding/phone/providers
      params:
      - name: disabled
        value: ''
        type: query
        description: Whether the provider is enabled (false) or disabled (true).
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve a list of <a href="https://auth0.com/docs/customize/phone-messages/configure-phone-messaging-providers">phone
      providers</a> details set for a Tenant. A list of fields to include or exclude may also be specified.

      '
  - info:
      name: Configure the Phone Provider
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/branding/phone/providers
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Create a <a href="https://auth0.com/docs/customize/phone-messages/configure-phone-messaging-providers">phone provider</a>.

      The <code>credentials</code> object requires different properties depending on the phone provider (which is specified
      using the <code>name</code> property).

      '
  - info:
      name: Get a Phone Provider
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/branding/phone/providers/:id
      params:
      - name: id
        value: ''
        type: path
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve <a href="https://auth0.com/docs/customize/phone-messages/configure-phone-messaging-providers">phone provider</a>
      details. A list of fields to include or exclude may also be specified.

      '
  - info:
      name: Update the Phone Provider
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/branding/phone/providers/:id
      params:
      - name: id
        value: ''
        type: path
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Update a <a href="https://auth0.com/docs/customize/phone-messages/configure-phone-messaging-providers">phone provider</a>.

      The <code>credentials</code> object requires different properties depending on the phone provider (which is specified
      using the <code>name</code> property).

      '
  - info:
      name: Deletes a Phone Provider
      type: http
    http:
      method: DELETE
      url: https://{tenantDomain}/api/v2/branding/phone/providers/:id
      params:
      - name: id
        value: ''
        type: path
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Delete the configured phone provider.

      '
  - info:
      name: Send a Test Phone Notification for the Configured Provider
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/branding/phone/providers/:id/try
      params:
      - name: id
        value: ''
        type: path
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Send a Test Phone Notification for the Configured Provider
  - info:
      name: Get a List of Phone Notification Templates
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/branding/phone/templates
      params:
      - name: disabled
        value: ''
        type: query
        description: Whether the template is enabled (false) or disabled (true).
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Get a List of Phone Notification Templates
  - info:
      name: Create a Phone Notification Template
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/branding/phone/templates
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Create a Phone Notification Template
  - info:
      name: Get a Phone Notification Template
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/branding/phone/templates/:id
      params:
      - name: id
        value: ''
        type: path
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Get a Phone Notification Template
  - info:
      name: Update a Phone Notification Template
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/branding/phone/templates/:id
      params:
      - name: id
        value: ''
        type: path
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update a Phone Notification Template
  - info:
      name: Delete a Phone Notification Template
      type: http
    http:
      method: DELETE
      url: https://{tenantDomain}/api/v2/branding/phone/templates/:id
      params:
      - name: id
        value: ''
        type: path
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Delete a Phone Notification Template
  - info:
      name: Resets a Phone Notification Template Values
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/branding/phone/templates/:id/reset
      params:
      - name: id
        value: ''
        type: path
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Resets a Phone Notification Template Values
  - info:
      name: Send a Test Phone Notification for the Configured Template
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/branding/phone/templates/:id/try
      params:
      - name: id
        value: ''
        type: path
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Send a Test Phone Notification for the Configured Template
  - info:
      name: Get Template for New Universal Login Experience
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/branding/templates/universal-login
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Get Template for New Universal Login Experience
  - info:
      name: Set Template for New Universal Login Experience
      type: http
    http:
      method: PUT
      url: https://{tenantDomain}/api/v2/branding/templates/universal-login
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: "Update the Universal Login branding template.\n\n<p>When <code>content-type</code> header is set to <code>application/json</code>:</p>\n\
      <pre>\n{\n  \"template\": \"&lt;!DOCTYPE html&gt;{% assign resolved_dir = dir | default: \"auto\" %}&lt;html lang=\"\
      {{locale}}\" dir=\"{{resolved_dir}}\"&gt;&lt;head&gt;{%- auth0:head -%}&lt;/head&gt;&lt;body class=\"_widget-auto-layout\"\
      &gt;{%- auth0:widget -%}&lt;/body&gt;&lt;/html&gt;\"\n}\n</pre>\n\n<p>\n  When <code>content-type</code> header is set\
      \ to <code>text/html</code>:\n</"
  - info:
      name: Delete Template for New Universal Login Experience
      type: http
    http:
      method: DELETE
      url: https://{tenantDomain}/api/v2/branding/templates/universal-login
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Delete Template for New Universal Login Experience
  - info:
      name: Create Branding Theme
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/branding/themes
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Create branding theme.
  - info:
      name: Get Default Branding Theme
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/branding/themes/default
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve default branding theme.
  - info:
      name: Get Branding Theme
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/branding/themes/:themeId
      params:
      - name: themeId
        value: ''
        type: path
        description: The ID of the theme
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Retrieve branding theme.
  - info:
      name: Update Branding Theme
      type: http
    http:
      method: PATCH
      url: https://{tenantDomain}/api/v2/branding/themes/:themeId
      params:
      - name: themeId
        value: ''
        type: path
        description: The ID of the theme
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Update branding theme.
  - info:
      name: Delete Branding Theme
      type: http
    http:
      method: DELETE
      url: https://{tenantDomain}/api/v2/branding/themes/:themeId
      params:
      - name: themeId
        value: ''
        type: path
        description: The ID of the theme
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Delete branding theme.
- info:
    name: client-grants
    type: folder
  items:
  - info:
      name: Get Client Grants
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/client-grants
      params:
      - name: per_page
        value: ''
        type: query
        description: Number of results per page.
      - name: page
        value: ''
        type: query
        description: Page index of the results to return. First page is 0.
      - name: include_totals
        value: ''
        type: query
        description: Return results inside an object that contains the total result count (true) or as a direct array of results
          (false, default).
      - name: from
        value: ''
        type: query
        description: Optional Id from which to start selection.
      - name: take
        value: ''
        type: query
        description: Number of results per page. Defaults to 50.
      - name: audience
        value: ''
        type: query
        description: Optional filter on audience.
      - name: client_id
        value: ''
        type: query
        description: Optional filter on client_id.
      - name: allow_any_organization
        value: ''
        type: query
        description: Optional filter on allow_any_organization.
      - name: subject_type
        value: ''
        type: query
        description: The type of application access the client grant allows.
      - name: default_for
        value: ''
        type: query
        description: Applies this client grant as the default for all clients in the specified group. The only accepted value
          is <a href="https://auth0.com/docs/get-started/applications/application-access-to-apis-client-grants#default-permissions-for-third-party-applications">`third_party_clients`</a>,
          which applies the grant to all third-party clients. Per-client grants for the same audience take precedence. Mutually
          exclusive with `client_id`.
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: 'Retrieve a list of <a href="https://auth0.com/docs/get-started/applications/application-access-to-apis-client-grants">client
      grants</a>, including the scopes associated with the application/API pair.

      '
  - info:
      name: Create Client Grant
      type: http
    http:
      method: POST
      url: https://{tenantDomain}/api/v2/client-grants
      body:
        type: json
        data: '{}'
      auth:
        type: bearer
        token: '{{bearerToken}}'
    docs: Create a client grant for a machine-to-machine login flow. To learn more, read <a href="https://www.auth0.com/docs/get-started/authentication-and-authorization-flow/client-credentials-flow">Client
      Credential Flow</a>.
  - info:
      name: Get Client Grant
      type: http
    http:
      method: GET
      url: https://{tenantDomain}/api/v2/client-grants/:id
      params:
      - name: id
        value: ''
        type: path
        

# --- truncated at 32 KB (260 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/auth0/refs/heads/main/apis.yml