Interface ManagementClientOptionsWithClientAssertion

Configuration for client credentials authentication using JWT assertion. Use this for server-to-server authentication with a private key.

Example: Using client assertion

const client = new ManagementClient({
  domain: 'your-tenant.auth0.com',
  clientId: 'your-client-id',
  clientAssertionSigningKey: 'your-private-key'
});

interface ManagementClientOptionsWithClientAssertion {
    headers?: Record<string, Supplier<undefined | string>>;
    domain: string;
    audience?: string;
    telemetry?: boolean;
    clientInfo?: { name: string; [key: string]: unknown };
    withCustomDomainHeader?: string;
    clientId: string;
    clientAssertionSigningKey: string;
    clientAssertionSigningAlg?: string;
    useMTLS?: boolean;
}

Hierarchy (View Summary)

ManagementClientOptions
- ManagementClientOptionsWithClientAssertion

Index

Properties

headers? domain audience? telemetry? clientInfo? withCustomDomainHeader? clientId clientAssertionSigningKey clientAssertionSigningAlg? useMTLS?

Properties

`Optional`headers

headers?: Record<string, Supplier<undefined | string>>

Additional headers to include in requests.

domain

domain: string

Auth0 domain (e.g., 'your-tenant.auth0.com')

`Optional`audience

audience?: string

API audience. Defaults to https://{domain}/api/v2/

Default Value

https://{domain}/api/v2/

`Optional`telemetry

telemetry?: boolean

Enable/disable telemetry. Defaults to true

Default Value

true

`Optional`clientInfo

clientInfo?: { name: string; [key: string]: unknown }

Custom client information for telemetry

`Optional`withCustomDomainHeader

withCustomDomainHeader?: string

Custom domain Header to use for whitelisted requests. When provided, the Auth0-Custom-Domain header will be added automatically to supported endpoints. This works seamlessly with custom fetchers - both the custom domain logic and your custom fetcher will be applied.

clientId

clientId: string

Auth0 application client ID

clientAssertionSigningKey

clientAssertionSigningKey: string

Private key for signing the client assertion JWT

`Optional`clientAssertionSigningAlg

clientAssertionSigningAlg?: string

Algorithm for signing the client assertion. Defaults to RS256

`Optional`useMTLS

useMTLS?: boolean

Enable mTLS for token endpoint calls

Interface ManagementClientOptionsWithClientAssertion

Example: Using client assertion

Hierarchy (View Summary)

Index

Properties

Properties

`Optional`headers

domain

`Optional`audience

Default Value

`Optional`telemetry

Default Value

`Optional`clientInfo

`Optional`withCustomDomainHeader

clientId

clientAssertionSigningKey

`Optional`clientAssertionSigningAlg

`Optional`useMTLS

Settings

On This Page

Interface ManagementClientOptionsWithClientAssertion

Example: Using client assertion

Hierarchy (View Summary)

Index

Properties

Properties

Optionalheaders

domain

Optionalaudience

Default Value

Optionaltelemetry

Default Value

OptionalclientInfo

OptionalwithCustomDomainHeader

clientId

clientAssertionSigningKey

OptionalclientAssertionSigningAlg

OptionaluseMTLS

Settings

On This Page

`Optional`headers

`Optional`audience

`Optional`telemetry

`Optional`clientInfo

`Optional`withCustomDomainHeader

`Optional`clientAssertionSigningAlg

`Optional`useMTLS