Auth0

Set up Auth0 for authentication and identity management. Get your domain, client ID, and client secret for integrating Auth0 into your application.

⏱ 5 minutes auth identity manage.auth0.com
getapi auth0

Prerequisites

  • An Auth0 account

Credentials

Variable Description Sensitive
AUTH0_DOMAIN Auth0 tenant domain (e.g., your-tenant.auth0.com) Public
AUTH0_CLIENT_ID Application Client ID Public
AUTH0_CLIENT_SECRET Application Client Secret for server-side usage Secret

Setup Steps

  1. 1 Info

    We'll get your Auth0 domain, Client ID, and Client Secret. You'll need an Auth0 application — we'll create one if you don't have one already.

  2. 2 Open URL

    Opening the Auth0 dashboard. Sign in if prompted.

    https://manage.auth0.com/dashboard
  3. 3 Choice

    Do you have an Auth0 application already?

  4. 4 Info

    Go to 'Applications' > 'Applications' in the sidebar, then click 'Create Application'. Give it a name and select the application type that matches your project (e.g. 'Regular Web Application', 'Single Page Application', or 'Native').

  5. 5 Confirm

    Application created?

    Checkpoint — confirm before continuing
  6. 6 Info

    Go to 'Applications' > 'Applications' in the sidebar and click on your application to open its settings.

  7. 7 Input

    Copy the 'Domain' value and paste it here (e.g., your-tenant.auth0.com):

    → AUTH0_DOMAIN
  8. 8 Input

    Copy the 'Client ID' and paste it here:

    → AUTH0_CLIENT_ID
    32 characters
  9. 9 Input

    Copy the 'Client Secret' and paste it here:

    → AUTH0_CLIENT_SECRET
    32–64+ characters
  10. 10 Info

    Setup complete. Automated validation is skipped because Auth0's client credentials flow requires an 'audience' parameter specific to your API. Test by initiating a login flow in your application.

Things to Know

  • The Client Secret must NEVER be exposed in client-side code. Use it only on the server side.
  • Auth0's free plan includes up to 25,000 monthly active users and unlimited social connections.
  • Make sure to configure your 'Allowed Callback URLs', 'Allowed Logout URLs', and 'Allowed Web Origins' in the application settings.
  • Auth0 domains can be regional (e.g., your-tenant.us.auth0.com). Use the exact domain shown in your dashboard.
  • Automated validation is not performed because Auth0's client credentials flow requires an 'audience' parameter. Verify by testing a login flow.
Recipe v1.0.0 Last verified: 2026-02-18 View raw JSON Edit this recipe