Interface Auth0ContextInterface<TUser>

Returns a new Fetcher class that will contain a fetchWithAuth() method. This is a drop-in replacement for the Fetch API's fetch() method, but will handle certain authentication logic for you, like building the proper auth headers or managing DPoP nonces and retries automatically.

Check the EXAMPLES.md file for a deeper look into this method.

Returns a string to be used to demonstrate possession of the private key used to cryptographically bind access tokens with DPoP.

It requires enabling the Auth0ClientOptions.useDpop option.

const token = await getAccessTokenSilently(options);
Copy

If there's a valid token stored, return it. Otherwise, opens an iframe with the /authorize URL using the parameters provided as arguments. Random and secure state and nonce parameters will be auto-generated. If the response is successful, results will be valid according to their expiration times.

If refresh tokens are used, the token endpoint is called directly with the 'refresh_token' grant. If no refresh token is available to make this call, the SDK will only fall back to using an iframe to the '/authorize' URL if the useRefreshTokensFallback setting has been set to true. By default this setting is false.

This method may use a web worker to perform the token call if the in-memory cache is used.

If an audience value is given to this function, the SDK always falls back to using an iframe to make the token exchange.

Note that in all cases, falling back to an iframe requires access to the auth0 cookie.

const token = await getTokenWithPopup(options, config);
Copy

Get an access token interactively.

Opens a popup with the /authorize URL using the parameters provided as arguments. Random and secure state and nonce parameters will be auto-generated. If the response is successful, results will be valid according to their expiration times.

Returns the current DPoP nonce used for making requests to Auth0.

It can return undefined because when starting fresh it will not be populated until after the first response from the server.

It requires enabling the Auth0ClientOptions.useDpop option.

const claims = await getIdTokenClaims();
Copy

Returns all claims from the id_token if available.

After the browser redirects back to the callback page, call handleRedirectCallback to handle success and error responses from Auth0. If the response is successful, results will be valid according to their expiration times.

await loginWithPopup(options, config);
Copy

Opens a popup with the /authorize URL using the parameters provided as arguments. Random and secure state and nonce parameters will be auto-generated. If the response is successful, results will be valid according to their expiration times.

IMPORTANT: This method has to be called from an event handler that was started by the user like a button click, for example, otherwise the popup will be blocked in most browsers.

await loginWithRedirect(options);
Copy

Performs a redirect to /authorize using the parameters provided as arguments. Random and secure state and nonce parameters will be auto-generated.

auth0.logout({ logoutParams: { returnTo: window.location.origin } });
Copy

Clears the application session and performs a redirect to /v2/logout, using the parameters provided as arguments, to clear the Auth0 session. If the logoutParams.federated option is specified, it also clears the Identity Provider session. Read more about how Logout works at Auth0.

Sets the current DPoP nonce used for making requests to Auth0.

It requires enabling the Auth0ClientOptions.useDpop option.