Auth0 Rules
The End of Life (EOL) date of Rules and Hooks will be November 18, 2026, and they are no longer available to new tenants created as of October 16, 2023. Existing tenants with active Hooks will retain Hooks product access through end of life.
We highly recommend that you use Actions to extend Auth0. With Actions, you have access to rich type information, inline documentation, and public npm packages, and can connect external integrations that enhance your overall extensibility experience. To learn more about what Actions offer, read Understand How Auth0 Actions Work.
To help with your migration, we offer guides that will help you migrate from Rules to Actions and migrate from Hooks to Actions. We also have a dedicated Move to Actions page that highlights feature comparisons, an Actions demo, and other resources to help you on your migration journey.
To read more about the Rules and Hooks deprecation, read our blog post: Preparing for Rules and Hooks End of Life.
Rules can be used in a variety of situations as part of the authentication pipeline where protocol-specific artifacts are generated:
an ID token in OpenID Connect (OIDC)
an access token in OAuth 2.0
an assertion in SAML
A new pipeline in which rules execute is created for each authentication request, and Rules are subject to Auth0's Rate Limit Policy.
| Read... | To learn... |
|---|---|
| Rule Use Cases | About different rule uses cases. |
| Create Rules | How to create rules using the Auth Dashboard or the Management API. |
| Store Rule Configurations | How to use the global configuration object in rules for storing commonly used values. |
| Cache Expensive Resources in Rules | How to use the global object to reuse resources stored there instead of creating them every time you run a rule. |
| Debug Rules | How to debug rules. |
| Use the Management API from Within Rules | How to access the Auth0 Management API endpoints from within rules. |
| Redirect Users from Within Rules | How to use rules to redirect users before an authentication transaction is complete. |
| User Object Properties in Rules | About the user object and how it stores information logged in users returned by the identity provider. |
| Context Object Properties in Rules | About the context object and how it stores contextual information about the current authentication transactions. |
| Raise Errors from Rules | How to display an error message to users from within rules. |