Interface WebAuth0Options

Extends the core Auth0Options with web-specific configuration that is passed down to @auth0/auth0-spa-js.

Remarks

Platform specific: Web only.

See

https://auth0.github.io/auth0-spa-js/interfaces/Auth0ClientOptions.html

interface WebAuth0Options {
    domain: string;
    localAuthenticationOptions?: LocalAuthenticationOptions;
    clientId: string;
    timeout?: number;
    headers?: Record<string, string>;
    useDPoP?: boolean;
    maxRetries?: number;
    cacheLocation?: "memory" | "localstorage";
    useRefreshTokens?: boolean;
    useRefreshTokensFallback?: boolean;
    audience?: string;
    scope?: string;
    useMrrt?: boolean;
}

Hierarchy (View Summary)

Auth0Options
- WebAuth0Options

Index

Properties

domain localAuthenticationOptions? clientId timeout? headers? useDPoP? maxRetries? cacheLocation? useRefreshTokens? useRefreshTokensFallback? audience? scope? useMrrt?

Properties

domain

domain: string

Your Auth0 application's domain. e.g., 'your-tenant.us.auth0.com'

`Optional`localAuthenticationOptions

localAuthenticationOptions?: LocalAuthenticationOptions

clientId

clientId: string

Your Auth0 application's client ID.

`Optional`timeout

timeout?: number

`Optional`headers

headers?: Record<string, string>

`Optional`useDPoP

useDPoP?: boolean

Enables DPoP (Demonstrating Proof-of-Possession) for enhanced token security. When enabled, access and refresh tokens are cryptographically bound to a client-specific key pair.

Default

true

See

https://datatracker.ietf.org/doc/html/rfc9449

`Optional`maxRetries

maxRetries?: number

The maximum number of retry attempts for transient errors during credential renewal. Helps handle network failures and transient errors when using refresh token rotation. iOS only - This parameter is accepted on Android for API compatibility but has no effect as the Auth0.Android SDK does not currently support retry configuration.

Default

0 (no retries)

Platform

ios

`Optional`cacheLocation

cacheLocation?: "memory" | "localstorage"

How and where to cache session data. Defaults to memory.

`Optional`useRefreshTokens

useRefreshTokens?: boolean

Enables the use of refresh tokens for silent authentication.

`Optional`useRefreshTokensFallback

useRefreshTokensFallback?: boolean

Fallback to iframe-based token retrieval if refresh token fails.

Default

true

`Optional`audience

audience?: string

A custom audience for the getTokenSilently call.

`Optional`scope

scope?: string

A custom scope for the getTokenSilently call.

`Optional`useMrrt

useMrrt?: boolean

Web only: Enables the use of Multi-Resource Refresh Tokens (MRRT). When enabled, useRefreshTokens is automatically set to true.

Default

false

Interface WebAuth0Options

Remarks

See

Hierarchy (View Summary)

Index

Properties

Properties

domain

`Optional`localAuthenticationOptions

clientId

`Optional`timeout

`Optional`headers

`Optional`useDPoP

Default

See

`Optional`maxRetries

Default

Platform

`Optional`cacheLocation

`Optional`useRefreshTokens

`Optional`useRefreshTokensFallback

Default

`Optional`audience

`Optional`scope

`Optional`useMrrt

Default

Settings

On This Page

Interface WebAuth0Options

Remarks

See

Hierarchy (View Summary)

Index

Properties

Properties

domain

OptionallocalAuthenticationOptions

clientId

Optionaltimeout

Optionalheaders

OptionaluseDPoP

Default

See

OptionalmaxRetries

Default

Platform

OptionalcacheLocation

OptionaluseRefreshTokens

OptionaluseRefreshTokensFallback

Default

Optionalaudience

Optionalscope

OptionaluseMrrt

Default

Settings

On This Page

`Optional`localAuthenticationOptions

`Optional`timeout

`Optional`headers

`Optional`useDPoP

`Optional`maxRetries

`Optional`cacheLocation

`Optional`useRefreshTokens

`Optional`useRefreshTokensFallback

`Optional`audience

`Optional`scope

`Optional`useMrrt