Skip to content

Auth0

FeatureSupport
User management✅ Full
Organizations✅ Native Auth0 organizations
Audit logs✅ Full (filter by user, type, date)
  1. Create or sign in to your Auth0 tenant:

    Go to manage.auth0.com and create a tenant if you don’t have one.

  2. Create a Machine-to-Machine application:

    In the Auth0 dashboard: Applications → Applications → Create Application. Choose Machine to Machine Applications and give it a name (e.g. AUMS Management).

  3. Authorize the Management API:

    After creation, select the Management API and grant the following scopes:

    Users:

    • read:users
    • update:users
    • create:users
    • delete:users
    • read:user_idp_tokens

    Organizations (Team and Business plans only):

    • read:organizations
    • create:organizations
    • update:organizations
    • delete:organizations
    • read:organization_members
    • create:organization_members
    • delete:organization_members
    • read:organization_invitations
    • create:organization_invitations
    • delete:organization_invitations

    Logs (for audit log access):

    • read:logs
    • read:logs_users
  4. Copy credentials:

    From the application’s Settings tab, note:

    • Domain (e.g. your-tenant.auth0.com)
    • Client ID
    • Client Secret
  5. Set environment variables:

    Terminal window
    PROVIDER=auth0
    AUTH0_DOMAIN=your-tenant.auth0.com
    AUTH0_CLIENT_ID=your-client-id
    AUTH0_CLIENT_SECRET=your-client-secret

To protect the AUMS dashboard with Auth0 SSO, create a Regular Web Application in Auth0 and set:

Terminal window
AUTH_CLIENT_OPENID_CONFIGURATION_URL=https://your-tenant.auth0.com
AUTH_CLIENT_ID=your-oidc-client-id
AUTH_CLIENT_SECRET=your-oidc-client-secret

Add <BASE_URL>/api/auth/callback/oidc to the Auth0 application’s Allowed Callback URLs.