LoginSign Up
← Back to all sparks
Auth0 logo

Auth0

INFRA · APISDEVOPS
Velocity7.5

Authentication and authorization platform

auth0.com

Auth0 hardens enterprise provisioning and refresh-token control, with AI agents in view

identityenterprisescimrbacrefresh-tokensb2b
Current state
Auth0 is deep in enterprise identity plumbing: refresh-token metadata and bulk-revocation endpoints, SCIM and Google Workspace group sync mapped to RBAC roles, and a dashboard navigation overhaul. The work targets B2B delegated administration and finer token lifecycle control rather than end-user-facing features.
Where it's heading
Two directions are clear: closing the loop between external identity providers and Auth0's own role model (SCIM Groups, Workspace Directory Sync), and preparing the platform for machine and agent traffic (M2M for third-party apps framed explicitly around AI agents). Bot-detection and passkey work continue in parallel.
Prediction
Expect more self-service B2B configuration and continued M2M/agent-access tooling, following the explicit nods to AI-agent and partner-backend use cases in this window.

Recent moves

  1. 5d ago

    Refresh Token metadata is now Generally Available

    Refresh Token Metadata reaches GA for Enterprise, letting teams attach up to 25 key-value pairs per token and manage them via the Management API. A real new lever for contextual session handling.

  2. 10d ago

    Google Workspace Directory Sync for Groups - Early Access Updates

    Google Workspace Directory Sync for Groups is now available without enrollment, with synced groups assignable to tenant- and org-level RBAC roles. Part of Auth0's push to map external directories onto its own access model.

  3. 12d ago

    Dashboard Search for APIs Now in Beta

    Adds real-time search for APIs in the dashboard by ID, identifier, or name. A console quality-of-life nicety with no change to the platform's capabilities.

  4. 16d ago

    Improved refresh token management is Early Access

    New Early Access endpoints add granular refresh-token search and bulk revocation (up to 100 IDs, or by user/client/audience). Extends the token-lifecycle control theme running through this release.

  5. 19d ago

    Enhanced Bot Detection for Signup Flows

    An updated ML model lowers false negatives in signup bot detection while holding false positives steady, rolling out automatically to Enterprise tenants. Incremental security hardening with no admin action required.

  6. 22d ago

    Inbound SCIM Groups for Enterprise Connections is now Generally Available!

    Inbound SCIM Groups for Enterprise Connections reaches GA, mapping synced groups to tenant- or org-scoped roles and letting customers self-configure provisioning. The clearest expression of Auth0's B2B delegated-admin direction this window.