Skip to content

Bump Auth0.ManagementApi from 7.46.0 to 8.3.0#831

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/src/Authentication/N3O.Umbraco.Authentication.Auth0/Auth0.ManagementApi-8.3.0
Closed

Bump Auth0.ManagementApi from 7.46.0 to 8.3.0#831
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/src/Authentication/N3O.Umbraco.Authentication.Auth0/Auth0.ManagementApi-8.3.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 16, 2026

Updated Auth0.ManagementApi from 7.46.0 to 8.3.0.

Release notes

Sourced from Auth0.ManagementApi's releases.

8.3.0

Added

  • Added UserDateSchemaExtensions with ToDateTime(this UserDateSchema?) and ToDateTime(this UserDateSchema?, TimeZoneInfo) extension methods to convert user date fields (e.g. created_at, last_login) to DateTime? #​1009 (kailash-b)
  • Resource Servers: Added AllowOnlineAccessWithEphemeralSessions (bool?) property to ResourceServer, CreateResourceServerRequestContent, UpdateResourceServerRequestContent, GetResourceServerResponseContent, CreateResourceServerResponseContent, and UpdateResourceServerResponseContent for ephemeral session support #​1007 (fern-api[bot])
  • Refresh Tokens: Added Audience (string) property to RevokeRefreshTokensRequestContent to scope bulk token revocation by resource server identifier #​1007 (fern-api[bot])
  • User Authentication Methods: Added passkey-specific properties (Aaguid, CredentialDeviceType, CredentialBackedUp, IdentityUserId, UserAgent, UserHandle, Transports) to CreateUserAuthenticationMethodRequestContent #​1007 (fern-api[bot])
  • User Authentication Methods: Added UserHandle and Transports properties to GetUserAuthenticationMethodResponseContent and UserAuthenticationMethod response types #​1007 (fern-api[bot])
  • User Authentication Methods: Added new CredentialDeviceTypeEnum type with single_device and multi_device values #​1007 (fern-api[bot])
  • Error handling: Added new structured error schema types BadRequestSchema, ForbiddenSchema, UnauthorizedSchema, and TooManyRequestsSchema with associated *Error enum types #​1007 (fern-api[bot])

Fixed

  • Error handling: Added 400 BadRequest and 404 NotFound error handling to Users.Roles client #​1007 (fern-api[bot])

Changed

  • Connections: Made id and name fields required (non-nullable) on all ConnectionResponseContent* types and ConnectionResponseCommon #​1007 (fern-api[bot])

8.2.0

Added

  • SSE Events streaming: Added IEventsClient with SubscribeAsync returning IAsyncEnumerable<EventStreamSubscribeEventsResponseContent> for real-time event consumption with cursor-based resumption and typed CloudEvent variants (user, client, connection, organization, etc.) #​995 (fern-api[bot])
  • New GoneError exception (HTTP 410) for expired stream cursors in SSE event streams #​995 (fern-api[bot])
  • Refresh token bulk revocation: Added RefreshTokensClient.RevokeAsync to bulk-revoke tokens by Ids, UserId, or ClientId #​995 (fern-api[bot])
  • Branding identifiers: Added BrandingIdentifiers type with LoginDisplay, OtpAutocomplete, and PhoneDisplay configuration options #​995 (fern-api[bot])
  • SAML assertion decryption: Added ConnectionAssertionDecryptionSettings for configuring SAML assertion decryption on connections #​995 (fern-api[bot])
  • Custom domain header forwarding: Added ManagementClientOptions.CustomDomain to inject Auth0-Custom-Header on allow-listed Management API endpoints via a new CustomDomainInterceptor #​984 (kailash-b)
  • Directory Provisioning: Added ListSynchronizedGroupsAsync and SetAsync to DirectoryProvisioningClient for managing synchronized groups on a connection #​984 (kailash-b)
  • New query filters: Strategy on Connections.ListAsync, Hydrate on Flows/Forms/FlowExecutions endpoints, Search on Groups.ListAsync, Identifiers on ResourceServers.ListAsync, and GrantIds on Organizations.ClientGrants.ListAsync #​987 (kailash-b)
  • Email providers: Added Resend as a supported value in EmailProviderNameEnum #​987 (kailash-b)
  • UpdateUserAuthenticationMethodResponseContent: Added Confirmed (bool?) property to indicate whether an authentication method has been confirmed #​987 (kailash-b)
  • Client configuration: Added ThirdPartySecurityMode, RedirectionPolicy, and MyOrganizationConfiguration properties on Client request/response types #​984 (kailash-b)
  • Client Grants: Added DefaultFor property and a matching DefaultFor filter on ClientGrants.ListAsync #​984 (kailash-b)
  • Tenant Settings: Added DynamicClientRegistrationSecurityMode and ClientIdMetadataDocumentSupported on tenant settings request/response types #​984 (kailash-b)
  • DPoP support on connections: Added DpopSigningAlg property to ConnectionOptionsOidc, ConnectionOptionsOkta, and ConnectionPropertiesOptions #​984 (kailash-b)
  • Pagination metadata: Page<TItem> now exposes Response, StatusCode, and Headers from the underlying HTTP response, populated via WithRawResponse() in pager requests #​976 (fern-api[bot])

Fixed

  • RefreshTokens.GetAsync now correctly handles BadRequestError (HTTP 400) responses; previously only 401, 403, and 404 were handled #​987 (kailash-b)
  • Fixed pagination page-size handling to correctly defer page size when not specified #​987 (kailash-b)
  • Path parameters and query strings now use context-aware encoding (path-segment-safe vs. query key/value character sets) to prevent malformed URL construction #​976 (fern-api[bot])

Changed

  • Self-Service Profiles: renamed "SSO Flow" concepts to "Enterprise Configuration" across request/response types #​995 (fern-api[bot])
  • Upgraded WireMock.Net test dependency to 2.4.0 #​992 (kailash-b)

8.1.0

Added

Removed

8.0.0

8.0.0 (2026-04-02)

Full Changelog

v8 is a major release of Auth0.ManagementApi featuring a completely redesigned, OpenAPI-generated SDK. The Authentication API (Auth0.AuthenticationApi) remains unchanged.

For a comprehensive migration guide with side-by-side examples, see V8_MIGRATION_GUIDE.md.

Added

  • OpenAPI-generated Management API SDK using Fern, ensuring the SDK stays up-to-date and consistent with the Auth0 Management API #​964 (kailash-b)
  • Automatic token management via ManagementClient wrapper with built-in ClientCredentialsTokenProvider for token acquisition and refresh #​964 (kailash-b)
  • Custom token provider support via pluggable ITokenProvider interface, including DelegateTokenProvider for async token retrieval #​926 (kailash-b)
  • Strongly typed request and response models (*RequestContent, *ResponseContent, *RequestParameters) for all API operations #​964 (kailash-b)
  • Hierarchical sub-client organization for improved discoverability (e.g., client.Users.Roles.ListAsync(), client.Users.Permissions.ListAsync()) #​964 (kailash-b)
  • Unified exception hierarchy with specific exception types per HTTP status code (BadRequestError, NotFoundError, TooManyRequestsError, etc.) #​964 (kailash-b)
  • Raw HTTP response access via .WithRawResponse() method for status codes, headers, and URL metadata #​964 (kailash-b)
  • Optional<T> type to distinguish between undefined and explicitly null values in PATCH operations #​964 (kailash-b)
  • Async pagination support via Pager<T> with IAsyncEnumerable<T> for automatic multi-page iteration #​964 (kailash-b)
  • Comprehensive interfaces (IManagementApiClient, IUsersClient, etc.) for all clients to simplify dependency injection and testing #​964 (kailash-b)
  • Per-request configuration via RequestOptions (timeout, retries, custom headers) #​964 (kailash-b)
  • Auth0-Client telemetry header via ClientOptions.Internal partial class #​964 (kailash-b)

Changed

  • Serialization library changed from Newtonsoft.Json to System.Text.Json for Auth0.ManagementApi #​964 (kailash-b)
  • ManagementClient now inherits from the generated ManagementApiClient, simplifying internals #​964 (kailash-b)
  • Client initialization redesigned — use ManagementClient with ManagementClientOptions or ManagementApiClient with a pre-obtained token #​964 (kailash-b)
  • Request types renamed from *CreateRequest/*UpdateRequest to *RequestContent naming convention #​964 (kailash-b)
  • Response types renamed from domain objects (e.g., User) to *ResponseContent naming convention #​964 (kailash-b)
  • Pagination changed from IPagedList<T> with PaginationInfo to Pager<T> with built-in parameters #​964 (kailash-b)
  • Exception handling changed from ErrorApiException/RateLimitApiException to typed exceptions (NotFoundError, TooManyRequestsError, etc.) #​964 (kailash-b)
  • Namespace imports changed from Auth0.ManagementApi.Models to Auth0.ManagementApi and Auth0.ManagementApi.Core #​964 (kailash-b)
  • Dropped .NET 8 as a build-time dependency while maintaining full runtime support #​927 (kailash-b)

Breaking Changes

This release contains breaking changes to client initialization, request/response types, method signatures, serialization, and exception handling. All existing v7 Management API code will require updates to work with v8. See the V8 Migration Guide for detailed upgrade instructions.

Supported Platforms

  • .NET 8.0+
  • .NET Framework 4.6.2+
  • .NET Standard 2.0+

8.0.0-beta.1

8.0.0-beta.1 (2026-03-02)

Full Changelog

Added

  • Generated the SDK against the latest available spec.

Changed

  • Dropped compile time support for .NET 8.0.

Fixed

  • Issue with rendering summary docs for some methods/classes.
  • Refactored automatic token management wrapper to support custom token providers and asynchronous token acquisition. #​926 (kailash-b)

8.0.0-beta.0

8.0.0-beta.0 (2026-02-04)

Full Changelog

This is a major version update that represents a complete modernization of the Management API SDK architecture and developer experience.

What's New:

  • OpenAPI-Generated SDK: The Management API SDK is now generated from Auth0's OpenAPI specifications using Fern, ensuring consistency, accuracy, and easier maintenance going forward.
  • Automatic Token Management: Introduced a new ManagementClient wrapper that handles token acquisition and refresh automatically using client credentials, eliminating the need for manual token management.
  • Improved Type Safety: All API operations now use strongly typed request and response models with proper validation and clear naming conventions (*RequestContent, *ResponseContent, *RequestParameters).
  • Better Organization: API operations are now organized into logical hierarchical sub-clients (e.g., client.Users.Permissions, client.Users.Roles, client.Organizations.Members) for better discoverability and cleaner code.
  • Enhanced Exception Handling: Unified exception hierarchy based on ManagementApiException with specific exception types for different HTTP status codes (NotFoundError, BadRequestError, TooManyRequestsError, etc.).
  • New Features:
    • Raw response access via .WithRawResponse() for accessing status codes, headers, and other HTTP metadata
    • Optional<T> type for distinguishing between undefined and explicitly null values in PATCH operations
    • Built-in pagination support with async enumeration
    • Comprehensive interfaces for dependency injection and testing

Breaking Changes:

This is a major version with breaking changes to client initialization, request/response types, method signatures, and exception handling. All existing v7 Management API code will require updates to work with v8. The Authentication API (Auth0.AuthenticationApi) remains unchanged and fully compatible.

Migration Guide:

Please refer to the comprehensive migration guide at V8_MIGRATION_GUIDE.md which includes side-by-side examples and detailed mappings from v7 to v8.

Changed

7.47.0

Added

Commits viewable in compare view.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump Auth0.ManagementApi from 7.46.0 to 8.3.0
0ec16f7 
---
updated-dependencies:
- dependency-name: Auth0.ManagementApi
  dependency-version: 8.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Jun 2, 2026

Superseded by #843.

@dependabot dependabot Bot closed this Jun 2, 2026
@dependabot dependabot Bot deleted the dependabot/nuget/src/Authentication/N3O.Umbraco.Authentication.Auth0/Auth0.ManagementApi-8.3.0 branch June 2, 2026 00:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@n3o-github