npm install
npm run client:build
npm run server:prodTo run the extension:
npm install
npm run serve:devUpdate the configuration file under ./server/config.json:
{
"AUTHORIZE_API_KEY": "mysecret",
"EXTENSION_SECRET": "mysecret",
"WT_URL": "http://localhost:3000/",
"AUTH0_DOMAIN": "me.auth0.com",
"AUTH0_CLIENT_ID": "myclientid",
"AUTH0_CLIENT_SECRET": "myclientsecret",
"EXTENSION_CLIENT_ID": "myotherclientid"
}As you can see, there are 2 clients involved here.
Management API Client
First you'll need to create a "Non Interactive Client" and add the details in AUTH0_DOMAIN / AUTH0_CLIENT_ID and AUTH0_CLIENT_SECRET. Then go to APIs and add the "Non Interactive Client" there with the following scopes:
read:clients read:connections read:users update:users delete:users create:users read:logs read:device_credentials update:device_credentials delete:device_credentials
This client will be used to interact with the Management API (eg: load users, ....).
Note: When installing this as a real extension it will be done automatically.
Client for End Users
This extension allows end users to login, not dashboard administrators. This means that we need to secure this extension in the same way that we secure other applications in Auth0.
- Create a "Single Page Application" in Clients
- Add the Client ID to the
EXTENSION_CLIENT_IDsetting. - Then in the Client, under Advanced Settings, OAuth2 change the value from
HS256toRS256. - Choose a connection (eg: DB connection) and only enable that one in your Client (Connections tab).
Customers can choose to implement their custom style, to do so the following settings can be added:
{
"TITLE": "Fabrikam User Management",
"CUSTOM_CSS": "https://rawgit.com/auth0-extensions/auth0-delegated-administration-extension/master/docs/theme/fabrikam.css"
}The CSS file has to be hosted by the customer and can be used to change the style of every component. An example can be found under docs/theme.