Configuring the Authorization Extension
Mitigate replay attacks when using the Implicit Flow
Access Tokens for the Management API
Log Users Out of Auth0
Redirect Users After Logout
OIDC Conformant Authentication Adoption Guide
Integrate Auth0 with Amazon Cognito
Legal Identity Providers
Authorization Code Flow with Proof Key for Code Exchange (PKCE)
Call API Using the Authorization Code Flow
Auth0 Single Page App SDK
Lock v11 for Web
Password Strength in Auth0 Database Connections
Sample Use Cases - Rules with Passwordless Authentication
Lock Configuration Options
JSON Web Token Structure
Application Types - Confidential vs. Public
Call API Using Device Authorization Flow
Call API Using the Implicit Flow
Normalized User Profile Schema
The attributes that Auth0 maps to a common schema are listed below.
Fields that are always generated:
name: the user's full name.
nickname: the user's username if available, else the local-part of the user's email.
picture: the URL of the user's picture. If unavailable, Auth0 uses the Gravatar image associated with the user's email address.
user_id: the user's unique identifier. This is unique per Connection, but the same for all apps that authenticate via that Connection.
By default, a user's
picture attributes provided by identity providers other than Auth0 (such as Google, Facebook, Twitter) are not directly editable since they are updated from the identity provider each time a user logs in. If you want to be able to edit these attributes, you must configure your connection sync with Auth0 so that user attributes will be updated from the identity provider only on user profile creation. Root attributes will then be available to be edited individually or by bulk import using the Management API.
Fields that are generated when the details are available:
email_verified: a boolean indicating if the user's email address has been verified.
given_name: the user's first name.
family_name: the user's last name.
Configure the Extension
Quickstarts for logout functionality
Initiate a Silent Authentication request
Generate a cryptographically random nonce
Who is this guide for?
Configure Amazon Web Services
How it works
Require Multi-factor Authentication for users who are outside the corporate network
Index of Configurable Options
Get the Profile
The User Profile includes an array of identities. In the most common case (logging in with a single provider), the array contains only one element. If the user has multiple accounts linked, the array will have an element for each associated account.
identities array contains the following attributes:
connection: the name of the connection.
isSocial: indicates if the provider is a Social provider.
provider: the provider of the connection.
user_id: the unique identifier of the user for this connection.