📚 Documentation - 🚀 Getting Started - 💻 API Reference - 💬 Feedback
- Docs Site - explore our docs site and learn more about Auth0
- API Reference - full reference for this library
This library supports the following tooling versions:
- Node.js: 20 or higher
Using npm in your project directory run the following command:
npm install @auth0/myorganization-jsThe MyOrganization client allows you to manage Auth0 organizations, including members, roles, and domains.
Initialize your client with a domain and token supplier:
import { MyOrganizationClient } from "@auth0/myorganization-js";
const client = new MyOrganizationClient({
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
token: "YOUR_ACCESS_TOKEN", // or use a token supplier function
});For dynamic token retrieval (recommended for production):
import { MyOrganizationClient } from "@auth0/myorganization-js";
const client = new MyOrganizationClient({
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
token: async ({ scope }) => {
// Fetch token with required scopes
return await getAccessToken({
scope: `openid profile email ${scope}`,
});
},
});For advanced authentication scenarios:
import { MyOrganizationClient } from "@auth0/myorganization-js";
const client = new MyOrganizationClient({
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
fetcher: async (url, init, authParams) => {
const token = await getAccessToken({ scope: authParams?.scope });
return fetch(url, {
...init,
headers: {
...init?.headers,
Authorization: `Bearer ${token}`,
},
});
},
});For server-side applications, you can use the client credentials flow with a helper function that automatically handles token management:
import { createMyOrganizationClientWithClientCredentials } from "@auth0/myorganization-js/server";
const client = createMyOrganizationClientWithClientCredentials(
{
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
},
{
clientId: "YOUR_CLIENT_ID",
clientSecret: "YOUR_CLIENT_SECRET",
organization: "org_123456789",
},
);For enhanced security using private key JWT:
import { createMyOrganizationClientWithClientCredentials } from "@auth0/myorganization-js/server";
const client = createMyOrganizationClientWithClientCredentials(
{
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
},
{
clientId: "YOUR_CLIENT_ID",
clientAssertionSigningKey: "YOUR_PRIVATE_KEY",
organization: "org_123456789",
},
);For more control, you can manually configure the token provider:
import { MyOrganizationClient, ClientCredentialsTokenProvider } from "@auth0/myorganization-js/server";
const tokenProvider = new ClientCredentialsTokenProvider({
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
clientId: "YOUR_CLIENT_ID",
clientSecret: "YOUR_CLIENT_SECRET",
organization: "org_123456789",
audience: "https://api.example.com", // optional custom audience
});
const client = new MyOrganizationClient({
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
tokenProvider,
});Security Warning: Server-side authentication methods should only be used in secure server environments where client secrets and private keys can be safely stored. Never expose these credentials in browser or SPA applications.
The SDK exports all request and response types as TypeScript interfaces. You can import them directly:
import { MyOrganizationClient, MyOrganization } from "@auth0/myorganization-js";
const client = new MyOrganizationClient({
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
token: "YOUR_ACCESS_TOKEN",
});
// Use the request type
const request: MyOrganization.CreateOrganizationDomainRequestContent = {
domain: "acme.com",
};
await client.organization.domains.create(request);- Full Reference - complete API reference guide
- MyOrganizationClient - for managing organizations, members, roles, and domains
When the API returns a non-success status code (4xx or 5xx response), a subclass of the following error will be thrown:
import { MyOrganizationClient, MyOrganizationError } from "@auth0/myorganization-js";
const client = new MyOrganizationClient({
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
token: "YOUR_ACCESS_TOKEN",
});
try {
await client.organization.domains.create({
domain: "acme.com",
});
} catch (err) {
if (err instanceof MyOrganizationError) {
console.log(err.statusCode);
console.log(err.message);
console.log(err.body);
console.log(err.rawResponse);
}
}Some list endpoints are paginated. You can manually iterate page-by-page:
import { MyOrganizationClient } from "@auth0/myorganization-js";
const client = new MyOrganizationClient({
domain: "{YOUR_TENANT_AND_REGION}.auth0.com",
token: "YOUR_ACCESS_TOKEN",
});
let page = await client.organization.members.list({
take: 10,
});
// Process first page
console.log(page.data);
// Get next pages
while (page.hasNextPage()) {
page = await page.getNextPage();
console.log(page.data);
}If you would like to send additional headers as part of the request, use the headers request option:
const response = await client.organization.domains.create(
{
domain: "acme.com",
},
{
headers: {
"X-Custom-Header": "custom value",
},
},
);If you would like to send additional query string parameters as part of the request, use the queryParams request option:
const response = await client.organization.domains.create(
{
domain: "acme.com",
},
{
queryParams: {
customQueryParamKey: "custom query param value",
},
},
);The SDK is instrumented with automatic retries with exponential backoff. A request will be retried as long as the request is deemed retryable and the number of retry attempts has not grown larger than the configured retry limit (default: 2).
A request is deemed retryable when any of the following HTTP status codes is returned:
Use the maxRetries request option to configure this behavior:
const response = await client.organization.domains.create(
{
domain: "acme.com",
},
{
maxRetries: 0, // override maxRetries at the request level
},
);The SDK defaults to a 60 second timeout. Use the timeoutInSeconds option to configure this behavior:
const response = await client.organization.domains.create(
{
domain: "acme.com",
},
{
timeoutInSeconds: 30, // override timeout to 30s
},
);The SDK allows users to abort requests at any point by passing in an abort signal:
const controller = new AbortController();
const response = await client.organization.domains.create(
{
domain: "acme.com",
},
{
abortSignal: controller.signal,
},
);
controller.abort(); // aborts the requestThe SDK provides access to raw response data, including headers, through the .withRawResponse() method. The .withRawResponse() method returns a promise that results to an object with a data and a rawResponse property:
const { data, rawResponse } = await client.organization.domains
.create({
domain: "acme.com",
})
.withRawResponse();
console.log(data);
console.log(rawResponse.headers["X-My-Header"]);The SDK works in the following runtimes:
- Node.js 20 or higher
- Vercel
- Cloudflare Workers
- Deno v1.25+
- Bun 1.0+
- React Native
We appreciate feedback and contribution to this repo! Before you get started, please see the following:
While we value open-source contributions to this SDK, this library is generated programmatically. Additions made directly to this library would have to be moved over to our generation code, otherwise they would be overwritten upon the next generated release. Feel free to open a PR as a proof of concept, but know that we will not be able to merge it as-is. We suggest opening an issue first to discuss with us!
On the other hand, contributions to the README are always very welcome!
To provide feedback or report a bug, please raise an issue on our issue tracker.
Please do not report security vulnerabilities on the public GitHub issue tracker. The Responsible Disclosure Program details the procedure for disclosing security issues.
Auth0 is an easy to implement, adaptable authentication and authorization platform. To learn more checkout Why Auth0?
This project is licensed under the MIT license. See the LICENSE file for more info.