Reputation: 87
Auth0 securing API for public endpoint
I have web app developed using .net core and react front end. I am currently using Auth0 platform to secure APIs and some of the APIs need public access, how can I achieve the security of the public APIs using the Auth0 platform ?
Upvotes: 0
Views: 202
Answers (2)
Reputation: 668
You can also setup third party application in Auth0, then let those applications have whatever access you deem fit through the dashboard. This can be done programmatically via the management api if you are going to let users register their own applications via your own UI.
https://auth0.com/docs/api-auth/user-consent
Upvotes: 1
Reputation: 327
I would recommend looking at using an api gateway to secure your APIs. AWS offers a service called Api Gateway that allows you to perform custom authorization on requests made to your endpoints before they're sent to your backend. So you could set up a custom authorizer to talk to Auth0 and filter requests that way.
This article might be a good place to start researching this.
Upvotes: 0
Related Questions
- ASP.NET Core with React.js API authorization
- Authorization and authentication in web application with ASP.NET Core backend and React frontend?
- Asp.net core 3.1 securing API and web app
- Asp.Net Core Web Api and ReactJS: authentication with external login provider without identity
- How to authenticate in asp.net core rest api from react app
- How to secure ASP.NET Core Web API endpoints to only allow requests from React application?
- How do I properly authenticate an API call from a React SPA using auth0?
- Authorizing and then using JWT Token with Auth0 React & ASP.net core
- Auth0: Login on Website - Allow access to API in ASP.NET Core
- How to protect public endpoints without authentication and authorization method