Best Practices for Tokens
Rotate Client Secret
This guide will show you how to change your application's client secret using Auth0's Management API. This task can also be performed using the Dashboard.
- Make a
POSTcall to the Rotate a Client Secret endpoint. Be sure to replace
MGMT_API_ACCESS_TOKENplaceholder values with your client ID and Management API Access Token, respectively.
||Τhe ID of the application to be updated.|
||Access Tokens for the Management API with the scope
- Update authorized applications
When you rotate a client secret, you must update any authorized applications with the new value.