Tanver-Hasan’s gists

Tanver-Hasan / SAML connection creation using metadata URL

Last active April 25, 2019 13:16


	curl -X POST \
	--url 'https://{YOUR TENANT NAME}.auth0.com/api/v2/connections' \
	-H "Authorization: Bearer {Managment API access token}" \
	-H "Content-Type: application/json" \
	-d '{"name":"{connection name}","strategy":"samlp","options":{"metadataUrl":"{ IDP metadata url}"}}'



	curl -X POST \

Tanver-Hasan / gist:84bc749301a0aed9af604aae5929ed87

Created April 25, 2019 10:43

Removing nested field in app_metadata

	function (user, context, callback) {
	var req = require("request");
	var baseURI = "https://[tenant name].auth0.com/api/v2/";
	var id = user.user_id;

	var bname = user && user.app_metadata && user.app_metadata.bname ? user.app_metadata.bname : null;
	// console.log(bname);
	if (bname!==null) {
	var url = `${baseURI}users/${id}`;
	console.log(url);

Tanver-Hasan / Add groups, roles, permissions in the token

Created March 25, 2019 17:42

	function (user, context, callback) {

	const namespace = 'https://myapi.com/';

	console.log("Groups "+user.groups);
	console.log("Roles "+user.roles);
	console.log("permissions "+user.permissions);


	context.idToken[namespace + 'group'] = user.groups;

Tanver-Hasan / Add default role on first login

Created March 22, 2019 15:17

	function (user, context, callback) {
	var request = require("request");

	var count = context.stats && context.stats.loginsCount ? context.stats.loginsCount : 0;
	if (count > 1) {
	return callback(null, user, context);
	}

	var headers = {
	'Authorization': 'Bearer ' + auth0.accessToken,

Tanver-Hasan / dotnet core implementation

Created March 8, 2019 11:27

	using System;
	using System.Net.Http;
	using System.Net.Http.Headers;
	using System.Text;
	using System.Threading;
	using System.Threading.Tasks;
	using Newtonsoft.Json;

	namespace ClientCredentials {
	class Program {

Tanver-Hasan / Attach groups, roles and permission in the token

Created March 6, 2019 12:18


	function (user, context, callback) {
	const namespace = 'https://myapi.com/';

	// console.log("Groups : "+user.groups);
	// console.log("Roles : "+user.roles);
	//console.log("Permissions : "+user.permissions);


	// attaching claim in idToken

Tanver-Hasan / Force password reset on first login

Last active May 8, 2019 16:41


	function (user, context, callback) {
	function daydiff (first, second) {
	return (second-first)/(10006060*24);
	}

	const last_password_change = user.last_password_reset \|\| user.created_at;

	if (daydiff(new Date(last_password_change), new Date()) > 30) {
	return callback(new UnauthorizedError('please change your password'));

Tanver-Hasan / Custom hosted login page

Last active February 19, 2019 12:06

	<!DOCTYPE html>
	<html>
	<head>
	<meta charset="utf-8">
	<meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
	<title>Sign In with Auth0</title>
	<meta name="viewport" content="width=device-width, initial-scale=1.0" />
	<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
	</head>
	<style>

Tanver-Hasan / Third party client

Created January 24, 2019 18:03


	#Create Dynamic Client
	#create client
	curl --request POST \
	--url "https://[TENANT].auth0.com/oidc/register" \
	--data '{ "client_name":"[Friendly name]", "redirect_uris":["http://localhost:4200"]}' \
	--header "Content-Type: application/json" \

	# Upgrade connection to domain level and enable client for the connection
	curl --request PATCH \

Tanver-Hasan / DELETE MFA

Created January 7, 2019 15:50

-#Get token
-curl --request POST \
-  --url 'https://[domain].auth0.com/oauth/token' \
-  -H 'content-type: application/json' \
-  -d '{"grant_type":"client_credentials","client_id": "[Client ID]","client_secret": "[Client Secret]","audience": "https://[domain].auth0.com/api/v2/"}'
-#Retrieves all Guardian enrollments.
-curl --request GET \
-   --url "https://[domain].auth0.com/api/v2/users/[User ID]/enrollments" \