Back to monitors

auth0

Auth0 Management API

Additive AI classification

Add "confirmation" prompt type to Auth0 Management API

A new enum value "confirmation" has been added to the prompt type list in the Auth0 Management API. This is an additive change that allows clients to use the new "confirmation" prompt type; existing code is unaffected.

Alert history

  • Additive

    Add "confirmation" prompt type to Auth0 Management API

    A new enum value "confirmation" has been added to the prompt type list in the Auth0 Management API. This is an additive change that allows clients to use the new "confirmation" prompt type; existing code is unaffected.

  • Informational

    Added error code descriptions for subscription/scoping limitations

    The Auth0 Management API OpenAPI spec now includes additional x-description-* fields in 403 error responses, documenting new error conditions related to subscription upgrades (identity_assertion_authorization_grant and cross_app_access_resource_app) and entity limits. These are documentation-only changes to the error response metadata that do not alter actual API behaviour, response structure, or client integration logic.

  • Additive

    Add grants field and third_party_client_access support to org APIs

    The Auth0 Management API adds three new optional response fields: grants array to token vault privileged access schemas, third_party_client_access enum to organization schemas, and organization_id to the user grants response. All fields are additive and marked with lifecycle status, enabling new capabilities around grant management and third-party client access control without breaking existing integrations.

  • Breaking

    weight type narrowed number→integer; backoff enum "none" renamed "default"

    Three distinct breaking changes in one diff:

    • The weight field in two allocation-related schemas is narrowed from type: number to type: integer — clients sending decimal weights will now fail validation.
    • The backoff_type enum loses the value "none" and gains "default" — any client sending or matching "none" will break.
    • The phone-provider-protection endpoints (GET/PATCH) are promoted from Early Access (EA) to General Availability (GA) — informational, but the x-release-lifecycle change signals a stability commitment.
  • Additive

    Auth0 Management API additions: code samples, new schemas, new scopes

    The Auth0 Management API spec adds comprehensive code samples in multiple languages (x-codeSamples), introduces new schemas for experimentation features (ExperimentValidationResult, Variation-related schemas, XssProtectionConfig), and adds new OAuth2 scopes for experimentation, group roles, organization features, rate limit policies, and user permissions. These are all purely additive changes that do not break existing integrations.