Table of Contents

Class TenantFlags

Namespace
Auth0.ManagementApi.Models
Assembly
Auth0.ManagementApi.dll

Tenant flags.

public class TenantFlags
Inheritance
TenantFlags
Inherited Members

Properties

AllowLegacyDelegationGrantTypes

Whether the legacy delegation endpoint will be enabled for your account (true) or not available (false).

[JsonProperty("allow_legacy_delegation_grant_types")]
public bool? AllowLegacyDelegationGrantTypes { get; set; }

Property Value

bool?

AllowLegacyRoGrantTypes

Whether the legacy auth/ro endpoint (used with resource owner password and passwordless features) will be enabled for your account (true) or not available (false).

[JsonProperty("allow_legacy_ro_grant_types")]
public bool? AllowLegacyRoGrantTypes { get; set; }

Property Value

bool?

AllowLegacyTokeninfoEndpoint

Whether the legacy /tokeninfo endpoint is enabled for your account (true) or unavailable (false).

[JsonProperty("allow_legacy_tokeninfo_endpoint")]
public bool? AllowLegacyTokeninfoEndpoint { get; set; }

Property Value

bool?

ChangePwdFlowV1

Enables the first version of the Change Password flow. We've deprecated this option and recommending a safer flow. This flag is only for backwards compatibility.

[JsonProperty("change_pwd_flow_v1")]
public bool ChangePwdFlowV1 { get; set; }

Property Value

bool

DisableClickjackProtectionHeaders

If true, the classic Universal Login prompts will not include additional security headers to prevent click-jacking.

[JsonProperty("disable_clickjack_protection_headers")]
public bool DisableClickjackProtectionHeaders { get; set; }

Property Value

bool

DisableManagementApiSmsObfuscation

If true, SMS phone numbers will not be obfuscated in Management API GET calls.

[JsonProperty("disable_management_api_sms_obfuscation")]
public bool? DisableManagementApiSmsObfuscation { get; set; }

Property Value

bool?

EnableAPIsSection

This flag enables the APIs section.

[JsonProperty("enable_apis_section")]
public bool EnableAPIsSection { get; set; }

Property Value

bool

EnableAdfsWaadEmailVerification

Enables the email verification flow during login for Azure AD and ADFS connections

[JsonProperty("enable_adfs_waad_email_verification")]
public bool? EnableAdfsWaadEmailVerification { get; set; }

Property Value

bool?

EnableClientConnections

This flag determines whether all current connections shall be enabled when a new client is created. Default value is true.

[JsonProperty("enable_client_connections")]
public bool EnableClientConnections { get; set; }

Property Value

bool

EnableCustomDomainInEmails

Whether emails sent by Auth0 for change password, verification etc. should use your verified custom domain (true) or your auth0.com sub-domain (false). Affects all emails, links, and URLs. Email will fail if the custom domain is not verified.

[JsonProperty("enable_custom_domain_in_emails")]
public bool? EnableCustomDomainInEmails { get; set; }

Property Value

bool?

EnableDynamicClientRegistration

Whether third-party developers can dynamically register applications for your APIs (true) or not (false). This flag enables dynamic client registration.

[JsonProperty("enable_dynamic_client_registration")]
public bool? EnableDynamicClientRegistration { get; set; }

Property Value

bool?

EnableIdTokenApi2

Whether ID tokens can be used to authorize some types of requests to API v2 (true) not not (false).

[JsonProperty("enable_idtoken_api2")]
public bool? EnableIdTokenApi2 { get; set; }

Property Value

bool?

EnableLegacyProfile

Whether ID tokens and the userinfo endpoint includes a complete user profile (true) or only OpenID Connect claims (false).

[JsonProperty("enable_legacy_profile")]
public bool? EnableLegacyProfile { get; set; }

Property Value

bool?

EnablePipeline2

This flag enables advanced API Authorization scenarios.

[JsonProperty("enable_pipeline2")]
public bool EnablePipeline2 { get; set; }

Property Value

bool

EnablePublicSignupUserExistsError

Whether the public sign up process shows a user_exists error (true) or a generic error (false) if the user already exists.

[JsonProperty("enable_public_signup_user_exists_error")]
public bool? EnablePublicSignupUserExistsError { get; set; }

Property Value

bool?

EnableSSO

Whether users are prompted to confirm log in before SSO redirection (false) or are not prompted (true).

[JsonProperty("enable_sso")]
public bool? EnableSSO { get; set; }

Property Value

bool?

EnforceClientAuthenticationOnPasswordlessStart

Enforce client authentication for passwordless start

[JsonProperty("enforce_client_authentication_on_passwordless_start")]
public bool? EnforceClientAuthenticationOnPasswordlessStart { get; set; }

Property Value

bool?

NoDiscloseEnterpriseConnections

Do not Publish Enterprise Connections Information with IdP domains on the lock configuration file.

[JsonProperty("no_disclose_enterprise_connections")]
public bool? NoDiscloseEnterpriseConnections { get; set; }

Property Value

bool?

RequirePushedAuthorizationRequests

Makes the use of Pushed Authorization Requests mandatory for all clients across the tenant.

[JsonProperty("require_pushed_authorization_requests")]
public bool? RequirePushedAuthorizationRequests { get; set; }

Property Value

bool?

RevokeRefreshTokenGrant

Delete underlying grant when a Refresh Token is revoked via the Authentication API.

[JsonProperty("revoke_refresh_token_grant")]
public bool? RevokeRefreshTokenGrant { get; set; }

Property Value

bool?

TrustAzureAdfsEmailVerifiedConnectionProperty

Changes email_verified behavior for Azure AD/ADFS connections when enabled. Sets email_verified to false otherwise.

[JsonProperty("trust_azure_adfs_email_verified_connection_property")]
public bool? TrustAzureAdfsEmailVerifiedConnectionProperty { get; set; }

Property Value

bool?