{"id":15046784,"url":"https://github.com/auth0/go-auth0","last_synced_at":"2026-04-02T23:32:53.841Z","repository":{"id":37472532,"uuid":"454421380","full_name":"auth0/go-auth0","owner":"auth0","description":"Go SDK for the Auth0 Management API.","archived":false,"fork":false,"pushed_at":"2026-01-22T12:39:45.000Z","size":9947,"stargazers_count":185,"open_issues_count":14,"forks_count":69,"subscribers_count":20,"default_branch":"main","last_synced_at":"2026-01-25T07:41:59.069Z","etag":null,"topics":["dx-sdk"],"latest_commit_sha":null,"homepage":"https://auth0.com","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/auth0.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":"AGENTS.md","dco":null,"cla":null}},"created_at":"2022-02-01T14:34:54.000Z","updated_at":"2026-01-22T12:14:07.000Z","dependencies_parsed_at":"2023-10-12T19:13:28.672Z","dependency_job_id":"3ea076d9-d705-455a-ad88-2b532dfa1a21","html_url":"https://github.com/auth0/go-auth0","commit_stats":{"total_commits":896,"total_committers":119,"mean_commits":7.529411764705882,"dds":0.7723214285714286,"last_synced_commit":"fcd7f55f64b07be951cc192d6f3c36382a258c25"},"previous_names":[],"tags_count":77,"template":false,"template_full_name":null,"purl":"pkg:github/auth0/go-auth0","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/auth0%2Fgo-auth0","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/auth0%2Fgo-auth0/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/auth0%2Fgo-auth0/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/auth0%2Fgo-auth0/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/auth0","download_url":"https://codeload.github.com/auth0/go-auth0/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/auth0%2Fgo-auth0/sbom","scorecard":{"id":216967,"data":{"date":"2025-08-11","repo":{"name":"github.com/auth0/go-auth0","commit":"ba1e9a8ab81645c5e08a1ab7981be41aac17819e"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":7.1,"checks":[{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/add-to-project.yml:1","Warn: no topLevel permission defined: .github/workflows/e2e-tests.yml:1","Warn: no topLevel permission defined: .github/workflows/go-release.yml:1","Warn: no topLevel permission defined: .github/workflows/govulncheck.yml:1","Warn: no topLevel permission defined: .github/workflows/main.yml:1","Warn: topLevel 'contents' permission set to 'write': .github/workflows/release.yml:10","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Pinned-Dependencies","score":6,"reason":"dependency not pinned by hash detected -- score normalized to 6","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/auth0/go-auth0/e2e-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/auth0/go-auth0/e2e-tests.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/go-release.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/auth0/go-auth0/go-release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/govulncheck.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/auth0/go-auth0/govulncheck.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/auth0/go-auth0/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/auth0/go-auth0/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/auth0/go-auth0/main.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/auth0/go-auth0/main.yml/main?enable=pin","Info: 1 out of 9 GitHub-owned GitHubAction dependencies pinned","Info: 4 out of 4 third-party GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":8,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'main'","Info: 'force pushes' disabled on branch 'main'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'main'","Info: 'stale review dismissal' is required to merge on branch 'main'","Warn: required approving review count is 1 on branch 'main'","Info: codeowner review is required on branch 'main'","Info: 'last push approval' is required to merge on branch 'main'","Info: status check found to merge onto on branch 'main'","Info: PRs are required in order to make changes on branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/auth0/.github/.github/SECURITY.md:1","Info: Found linked content: github.com/auth0/.github/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/auth0/.github/.github/SECURITY.md:1","Info: Found text in security policy: github.com/auth0/.github/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-17T01:49:46.565Z","repository_id":37472532,"created_at":"2025-08-17T01:49:46.565Z","updated_at":"2025-08-17T01:49:46.565Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28911821,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-30T08:15:08.179Z","status":"ssl_error","status_checked_at":"2026-01-30T08:14:31.507Z","response_time":66,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dx-sdk"],"created_at":"2024-09-24T20:53:34.676Z","updated_at":"2026-04-02T23:32:53.836Z","avatar_url":"https://github.com/auth0.png","language":"Go","funding_links":[],"categories":["Developer Ecosystem"],"sub_categories":[],"readme":"![Go SDK for Auth0](https://cdn.auth0.com/website/sdks/banners/go-auth0-banner.png)\n\n\u003cdiv align=\"center\"\u003e\n\n[![GoDoc](https://pkg.go.dev/badge/github.com/auth0/go-auth0/v2.svg)](https://pkg.go.dev/github.com/auth0/go-auth0/v2)\n[![Go Report Card](https://goreportcard.com/badge/github.com/auth0/go-auth0/v2?style=flat-square)](https://goreportcard.com/report/github.com/auth0/go-auth0/v2)\n[![Release](https://img.shields.io/github/v/release/auth0/go-auth0?include_prereleases\u0026style=flat-square)](https://github.com/auth0/go-auth0/releases)\n[![License](https://img.shields.io/github/license/auth0/go-auth0.svg?style=flat-square)](https://github.com/auth0/go-auth0/blob/v2/LICENSE)\n[![Build Status](https://img.shields.io/github/actions/workflow/status/auth0/go-auth0/main.yml?branch=v2\u0026style=flat-square)](https://github.com/auth0/go-auth0/actions?query=branch%3Av2)\n[![Codecov](https://img.shields.io/codecov/c/github/auth0/go-auth0/v2?style=flat-square)](https://codecov.io/gh/auth0/go-auth0/tree/v2)\n[![FOSSA Status](https://app.fossa.com/api/projects/git%2Bgithub.com%2Fauth0%2Fgo-auth0.svg?type=shield)](https://app.fossa.com/projects/git%2Bgithub.com%2Fauth0%2Fgo-auth0?ref=badge_shield)\n[![Ask DeepWiki](https://deepwiki.com/badge.svg)](https://deepwiki.com/auth0/go-auth0)\n\nšŸ“š [Documentation](#documentation) ā€¢ šŸš€ [Getting started](#getting-started) ā€¢ šŸ’¬ [Feedback](#feedback)\n\n\u003c/div\u003e\n\n---\n\n## Documentation\n\n- [Godoc](https://pkg.go.dev/github.com/auth0/go-auth0/v2) - explore the Go SDK documentation.\n- [Docs site](https://www.auth0.com/docs) ā€” explore our docs site and learn more about Auth0.\n- [Examples](./EXAMPLES.md) - Further examples around usage of the SDK.\n- [API Reference](./reference.md) - Complete API reference documentation.\n\n## Getting started\n\n### Requirements\n\nThis library follows the [same support policy as Go](https://go.dev/doc/devel/release#policy). The last two major Go releases are actively supported and compatibility issues will be fixed. While you may find that older versions of Go may work, we will not actively test and fix compatibility issues with these versions.\n\n- Go 1.24+\n\n### Installation\n\n```shell\ngo get github.com/auth0/go-auth0/v2\n```\n\n### Usage\n\n#### Authentication API Client\n\nThis client can be used to access Auth0's [Authentication API](https://auth0.com/docs/api/authentication).\n\n```go\npackage main\n\nimport (\n\t\"context\"\n\t\"log\"\n\n\t\"github.com/auth0/go-auth0/v2/authentication\"\n\t\"github.com/auth0/go-auth0/v2/authentication/database\"\n\t\"github.com/auth0/go-auth0/v2/authentication/oauth\"\n)\n\nfunc main() {\n\t// Get these from your Auth0 Application Dashboard.\n\tdomain := \"example.us.auth0.com\"\n\tclientID := \"EXAMPLE_16L9d34h0qe4NVE6SaHxZEid\"\n\tclientSecret := \"EXAMPLE_XSQGmnt8JdXs23407hrK6XXXXXXX\"\n\n\t// Initialize a new client using a domain, client ID and client secret.\n\tauthAPI, err := authentication.New(\n\t\tcontext.TODO(), // Replace with a Context that better suits your usage\n\t\tdomain,\n\t\tauthentication.WithClientID(clientID),\n\t\tauthentication.WithClientSecret(clientSecret), // Optional depending on the grants used\n\t)\n\tif err != nil {\n\t\tlog.Fatalf(\"failed to initialize the auth0 authentication API client: %+v\", err)\n\t}\n\n\t// Now we can interact with the Auth0 Authentication API.\n\t// Sign up a user\n\tuserData := database.SignupRequest{\n\t\tConnection: \"Username-Password-Authentication\",\n\t\tUsername: \"mytestaccount\",\n\t\tPassword: \"mypassword\",\n\t\tEmail: \"mytestaccount@example.com\",\n\t}\n\n\tcreatedUser, err := authAPI.Database.Signup(context.Background(), userData)\n\tif err != nil {\n\t\tlog.Fatalf(\"failed to sign user up: %+v\", err)\n\t}\n\n\t// Login using OAuth grants\n\ttokenSet, err := authAPI.OAuth.LoginWithAuthCodeWithPKCE(context.Background(), oauth.LoginWithAuthCodeWithPKCERequest{\n\t\tCode: \"test-code\",\n\t\tCodeVerifier: \"test-code-verifier\",\n\t}, oauth.IDTokenValidationOptions{})\n\tif err != nil {\n\t\tlog.Fatalf(\"failed to retrieve tokens: %+v\", err)\n\t}\n}\n```\n\n\u003e **Note**\n\u003e The [context](https://pkg.go.dev/context?utm_source=godoc) package can be used to pass cancellation signals and deadlines to the Client for handling a request. If there is no context available then `context.Background()` can be used.\n\n#### Management API Client\n\nThe Auth0 Management API is meant to be used by back-end servers or trusted parties performing administrative tasks. Generally speaking, anything that can be done through the Auth0 dashboard (and more) can also be done through this API.\n\nInitialize your client class with a domain and token:\n\n```go\npackage main\n\nimport (\n\t\"context\"\n\t\"log\"\n\n\t\"github.com/auth0/go-auth0/v2/management/option\"\n\tmanagement \"github.com/auth0/go-auth0/v2/management/client\"\n)\n\nfunc main() {\n\tmgmt, err := management.New(\n\t\t\"{YOUR_TENANT_AND_REGION}.auth0.com\",\n\t\toption.WithToken(\"{YOUR_API_V2_TOKEN}\"), // Replace with a Context that better suits your usage\n\t)\n}\n```\n\nOr use client credentials:\n\n```go\npackage main\n\nimport (\n\t\"context\"\n\t\"log\"\n\n\t\"github.com/auth0/go-auth0/v2/management/option\"\n\tmanagement \"github.com/auth0/go-auth0/v2/management/client\"\n)\n\nfunc main() {\n\tmgmt, err := management.New(\n\t\t\"{YOUR_TENANT_AND_REGION}.auth0.com\",\n\t\toption.WithClientCredentials(context.TODO(), clientID, clientSecret), // Replace with a Context that better suits your usage\n\t)\n}\n```\n\nOr use a custom token source for advanced token management (e.g., shared caching across services):\n\n```go\npackage main\n\nimport (\n\t\"github.com/auth0/go-auth0/v2/management/option\"\n\tmanagement \"github.com/auth0/go-auth0/v2/management/client\"\n\t\"golang.org/x/oauth2\"\n)\n\nfunc main() {\n\tmgmt, err := management.New(\n\t\t\"{YOUR_TENANT_AND_REGION}.auth0.com\",\n\t\toption.WithTokenSource(oauth2.ReuseTokenSource(nil, myCustomTokenSource)),\n\t)\n}\n```\n\n## Feedback\n\n### Contributing\n\nWe appreciate feedback and contribution to this repo! Before you get started, please see the following:\n\n- [Contribution Guide](./CONTRIBUTING.md)\n- [Auth0's General Contribution Guidelines](https://github.com/auth0/open-source-template/blob/master/GENERAL-CONTRIBUTING.md)\n- [Auth0's Code of Conduct Guidelines](https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md)\n\n### Raise an issue\n\nTo provide feedback or report a bug, [please raise an issue on our issue tracker](https://github.com/auth0/go-auth0/issues).\n\n### Vulnerability Reporting\n\nPlease do not report security vulnerabilities on the public Github issue tracker. The [Responsible Disclosure Program](https://auth0.com/responsible-disclosure-policy) details the procedure for disclosing security issues.\n\n---\n\n\u003cp align=\"center\"\u003e\n \u003cpicture\u003e\n \u003csource media=\"(prefers-color-scheme: light)\" srcset=\"https://cdn.auth0.com/website/sdks/logos/auth0_light_mode.png\" width=\"150\"\u003e\n \u003csource media=\"(prefers-color-scheme: dark)\" srcset=\"https://cdn.auth0.com/website/sdks/logos/auth0_dark_mode.png\" width=\"150\"\u003e\n \u003cimg alt=\"Auth0 Logo\" src=\"https://cdn.auth0.com/website/sdks/logos/auth0_light_mode.png\" width=\"150\"\u003e\n \u003c/picture\u003e\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003eAuth0 is an easy to implement, adaptable authentication and authorization platform.\u003cbr /\u003eTo learn more checkout \u003ca href=\"https://auth0.com/why-auth0\"\u003eWhy Auth0?\u003c/a\u003e\u003c/p\u003e\n\n\u003cp align=\"center\"\u003eThis project is licensed under the MIT license. See the \u003ca href=\"./LICENSE\"\u003e LICENSE\u003c/a\u003e file for more info.\u003c/p\u003e","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fauth0%2Fgo-auth0","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fauth0%2Fgo-auth0","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fauth0%2Fgo-auth0/lists"}