This page describes the typical architecture scenarios we have identified when working with customers on implementing Auth0.
Click on any scenario to get more information.
These scenarios describe the different type of technology architectures your application may use, and how Auth0 can help for each of those.
Single Sign-On for Regular Web Apps
Traditional web application which needs to authenticate users using OpenID Connect.
Server Client + API
Server to server communication where a server needs to make secure calls to an API.
SPA + API
Single Page Web Application which talks to an API. The application will use OpenID Connect with the Implicit Grant Flow to authenticate users with Auth0.
These scenarios are under construction and will soon be updated. Some describe the different type of technology architectures your application may use, while others describe the architecture depending on the type of businesses (B2C, B2B, B2E), and how Auth0 can help in each of these scenarios.
Mobile + API
Mobile Application which talks to an API. The application will use OpenID Connect with the Authorization Code Grant using Proof Key for Code Exchange (PKCE) to authenticate users.
Regular Web App (using SAML)
Traditional web application which needs to authenticate users using SAML2.
Business to Business + Enterprise Identity Scenarios
This is essentially a hybrid between B2B and B2E where you have a larger SAAS application, like Zendesk for example, where users are grouped into companies.
Business to Business Identity Scenarios
In this scenario you usually have a larger SAAS application, like Zendesk for example, where their customers are typically other companies which are registered as tenants.
Business to Consumer Identity Scenarios
Usually eCommerce or SAAS applications which have end users (consumers) as customers and the application typically used OpenID Connect as a protocol to communicate with Auth0.
Business to Enterprise Identity Scenarios
Large organization who wants to federate their existing enterprise directory service to allow employees to log in to applications using their existing enterprise credentials.