Role-Based Access Control
Hooks are Webtasks associated with specific extensibility points of the Auth0 platform, which allow you to customize the behavior of Auth0 with custom code using Node.js. When using Database Connections, Auth0 invokes the Hooks at runtime to execute custom logic.
When using Database Connections, Hooks allow you to customize the behavior of Auth0 using Node.js code that executes against extensibility points (which are comparable to webhooks that come with a server). Hooks allow you modularity when configuring your Auth0 implementation, and extend the functionality of base Auth0 features.
Benefits of RBAC
Hooks allow you to customize the behavior of Auth0 with Node.js code, but they are executed only against selected extensibility points, which are the serverless option analogous to the webhooks that come with a server. The following is a list of currently available extensibility points:
- Credentials Exchange: change the rolescopes and add custom claims to the tokens issued by the Auth0 API's
- Pre-User Registration: prevent user registration and add custom metadata to a newly-created user
- Post-User Registration: implement custom actions that execute asynchronously from the Auth0 authentication process after a new user registers and is added to the database
If you are behind a firewall, this feature may require whitelisting of the appropriate Auth0 IP addresses to work properly.