Deprecations and Migrations
We are actively migrating customers to new behaviors for all deprecations listed below. Please review these carefully to ensure you've taken any necessary steps to avoid service disruption. You can also search tenant logs for any errors caused by using deprecated features. To learn more, read Search Logs for Deprecation Errors.
Unregistered Scopes in Refresh Tokens Deprecation
Deprecated: July 12, 2023
End of life: January 17, 2024
We are improving scope evaluation during refresh token exchange to ensure that unregistered scopes cannot be requested. Custom scope values not registered against the
audience value (for an API registered in your tenant) are considered unregistered scopes.
With this change, the API scope evaluation will include any custom scopes requested during user authentication or injected through extensibility, such as Rules. This evaluation will validate that all scopes are registered, returning an error if any are not registered.
Rules and Hooks Deprecations
Deprecated: May 16, 2023
End of life: November 18, 2024 (note the longer-than-standard migration window of 18 months)
Over the course of the next 18 months, we will be winding down support for Rules and Hooks in our products and navigating all customers to use Auth0 Actions as the main place for customization and extensibility. Rules and Hooks will continue to receive full maintenance support until end of life; however, no new functionality will be introduced.
If you are currently using Rules and/or Hooks, please make plans to migrate to Actions prior to the EOL date of November 18, 2024. Please see the resources below to aid in your migration planning.
Beginning on October 16, 2023, Rules and Hooks functionality will not be present in newly-created tenants. Any tenants created before this date will continue to have access to Rules and Hooks until the EOL date of November 18, 2024.
We recommend that you start building new extensibility use cases in Actions and, if you are able, start migrating your existing Rules and Hooks to Actions. To help aid you in your migration, please review the below documents:
auth0-cordova, angular-auth0, and express-oauth2-bearer Repo Deprecations
Deprecated: April 27, 2023
End of life: June 30, 2023 (express-oauth2-bearer), October 27, 2023 (angular-auth0 and auth0-cordova)
The Auth0 Developer Experience team is in the process of deprecating the following repos:
These libraries will no longer be supported after their end of life date. For express-oauth2-bearer, the EOL date is June 30, 2023. For angular-auth0 and auth0-cordova, the EOL date is October 27, 2023. Please remove these libraries from any active projects before these dates.
If you have any questions or concerns, please reach out to us on GitHub.