playbooks

home / skills / openclaw / skills / auth0

auth0 skill

/skills/mrgoodb/auth0

This skill helps manage users, applications, and authentication via Auth0 by interacting with the Management API to streamline identity tasks.

npx playbooks add skill openclaw/skills --skill auth0

Review the files below or copy the command above to add this skill to your agents.

Files (2)
SKILL.md
1.0 KB
---
name: auth0
description: Manage users, applications, and authentication via Auth0 Management API.
metadata: {"clawdbot":{"emoji":"🔐","requires":{"env":["AUTH0_DOMAIN","AUTH0_MGMT_TOKEN"]}}}
---
# Auth0
Identity platform.
## Environment
```bash
export AUTH0_DOMAIN="your-tenant.auth0.com"
export AUTH0_MGMT_TOKEN="xxxxxxxxxx"
```
## List Users
```bash
curl "https://$AUTH0_DOMAIN/api/v2/users" -H "Authorization: Bearer $AUTH0_MGMT_TOKEN"
```
## Create User
```bash
curl -X POST "https://$AUTH0_DOMAIN/api/v2/users" \
  -H "Authorization: Bearer $AUTH0_MGMT_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"email": "[email protected]", "password": "Pass123!", "connection": "Username-Password-Authentication"}'
```
## Get User
```bash
curl "https://$AUTH0_DOMAIN/api/v2/users/{userId}" -H "Authorization: Bearer $AUTH0_MGMT_TOKEN"
```
## List Applications
```bash
curl "https://$AUTH0_DOMAIN/api/v2/clients" -H "Authorization: Bearer $AUTH0_MGMT_TOKEN"
```
## Links
- Dashboard: https://manage.auth0.com
- Docs: https://auth0.com/docs/api/management/v2

Overview

This skill manages Auth0 tenants by calling the Auth0 Management API to list and manipulate users, applications (clients), and authentication configuration. It provides programmatic access to common admin tasks like listing users, creating accounts, and retrieving application metadata. The skill expects an Auth0 domain and a valid Management API token in environment variables.

How this skill works

The skill issues HTTPS requests to the Auth0 Management API endpoints using the configured tenant domain and bearer token. It supports operations such as listing users, creating a user with a given connection, fetching a specific user by ID, and listing client applications. Responses from the API are returned as structured objects for further automation or display.

When to use it

  • Automate user provisioning and deprovisioning in a CI/CD pipeline
  • Audit or export user and application lists from an Auth0 tenant
  • Integrate tenant management into admin dashboards or chatops
  • Quickly fetch user details during support or incident response
  • Script bulk user updates or client application inventory tasks

Best practices

  • Store AUTH0_DOMAIN and AUTH0_MGMT_TOKEN in secure environment variables or a secrets manager
  • Limit token scope to only the Management API permissions required for the task
  • Use pagination when listing large numbers of users or clients to avoid truncated results
  • Perform destructive operations (delete, update passwords) under a confirmation workflow or CI guard
  • Log API calls and responses securely for auditability, avoiding logging sensitive tokens or passwords

Example use cases

  • List all users in the tenant to generate an export for compliance reporting
  • Create a new user in the Username-Password-Authentication connection during onboarding
  • Retrieve a specific user's profile and metadata to troubleshoot login issues
  • List all registered client applications to inventory OAuth clients and rotate secrets
  • Embed user management into an internal admin tool to reduce manual dashboard use

FAQ

What credentials are required?

You need the tenant domain and a Management API bearer token with sufficient scopes. Store them as AUTH0_DOMAIN and AUTH0_MGMT_TOKEN.

Can I create users with passwords?

Yes. The skill can create users by specifying email, password, and the appropriate connection (for example, Username-Password-Authentication).