Feat : Add support for CTE profiles (EA)

docs/auth0_token-exchange.md

@@ -0,0 +1,17 @@
+---
+layout: default
+has_toc: false
+has_children: true
+---
+# auth0 token-exchange
+
+Manage token exchange profiles. Token exchange profiles enable secure token exchange flows for authentication and authorization.
+
+## Commands
+
+- [auth0 token-exchange create](auth0_token-exchange_create.md) - Create a new token exchange profile
+- [auth0 token-exchange delete](auth0_token-exchange_delete.md) - Delete a token exchange profile
+- [auth0 token-exchange list](auth0_token-exchange_list.md) - List your token exchange profiles
+- [auth0 token-exchange show](auth0_token-exchange_show.md) - Show a token exchange profile
+- [auth0 token-exchange update](auth0_token-exchange_update.md) - Update a token exchange profile
+

docs/auth0_token-exchange_create.md

@@ -0,0 +1,61 @@
+---
+layout: default
+parent: auth0 token-exchange
+has_toc: false
+---
+# auth0 token-exchange create
+
+Create a new token exchange profile.
+
+To create interactively, use `auth0 token-exchange create` with no flags.
+
+To create non-interactively, supply the name, subject token type, action ID, and type through the flags.
+
+## Usage
+```
+auth0 token-exchange create [flags]
+```
+
+## Examples
+
+```
+  auth0 token-exchange create
+  auth0 token-exchange create --name "My Token Exchange Profile"
+  auth0 token-exchange create --name "My Token Exchange Profile" --subject-token-type "urn:ietf:params:oauth:token-type:jwt"
+  auth0 token-exchange create --name "My Token Exchange Profile" --subject-token-type "urn:ietf:params:oauth:token-type:jwt" --action-id "act_123abc" --type "custom_authentication"
+  auth0 token-exchange create -n "My Token Exchange Profile" -s "urn:ietf:params:oauth:token-type:jwt" -a "act_123abc" -t "custom_authentication" --json
+  auth0 token-exchange create -n "My Token Exchange Profile" -s "urn:ietf:params:oauth:token-type:jwt" -a "act_123abc" -t "custom_authentication" --json-compact
+```
+
+
+## Flags
+
+```
+  -a, --action-id string            Identifier of the action.
+      --json                        Output in json format.
+      --json-compact                Output in compact json format.
+  -n, --name string                 Name of the token exchange profile.
+  -s, --subject-token-type string   Type of the subject token. Must be a valid URI format (e.g., urn:ietf:params:oauth:token-type:jwt). Cannot use reserved prefixes: http://auth0.com, https://auth0.com, http://okta.com, https://okta.com, urn:ietf, urn:auth0, urn:okta.
+  -t, --type string                 Type of the token exchange profile. Currently only 'custom_authentication' is supported.
+```
+
+
+## Inherited Flags
+
+```
+      --debug           Enable debug mode.
+      --no-color        Disable colors.
+      --no-input        Disable interactivity.
+      --tenant string   Specific tenant to use.
+```
+
+
+## Related Commands
+
+- [auth0 token-exchange create](auth0_token-exchange_create.md) - Create a new token exchange profile
+- [auth0 token-exchange delete](auth0_token-exchange_delete.md) - Delete a token exchange profile
+- [auth0 token-exchange list](auth0_token-exchange_list.md) - List your token exchange profiles
+- [auth0 token-exchange show](auth0_token-exchange_show.md) - Show a token exchange profile
+- [auth0 token-exchange update](auth0_token-exchange_update.md) - Update a token exchange profile
+
+

docs/auth0_token-exchange_delete.md

@@ -0,0 +1,56 @@
+---
+layout: default
+parent: auth0 token-exchange
+has_toc: false
+---
+# auth0 token-exchange delete
+
+Delete a token exchange profile.
+
+To delete interactively, use `auth0 token-exchange delete` with no arguments.
+
+To delete non-interactively, supply the profile id and the `--force` flag to skip confirmation.
+
+## Usage
+```
+auth0 token-exchange delete [flags]
+```
+
+## Examples
+
+```
+  auth0 token-exchange delete
+  auth0 token-exchange rm
+  auth0 token-exchange delete <profile-id>
+  auth0 token-exchange delete <profile-id> --force
+  auth0 token-exchange delete <profile-id> <profile-id2> <profile-idn>
+  auth0 token-exchange delete <profile-id> <profile-id2> <profile-idn> --force
+```
+
+
+## Flags
+
+```
+      --force   Skip confirmation.
+```
+
+
+## Inherited Flags
+
+```
+      --debug           Enable debug mode.
+      --no-color        Disable colors.
+      --no-input        Disable interactivity.
+      --tenant string   Specific tenant to use.
+```
+
+
+## Related Commands
+
+- [auth0 token-exchange create](auth0_token-exchange_create.md) - Create a new token exchange profile
+- [auth0 token-exchange delete](auth0_token-exchange_delete.md) - Delete a token exchange profile
+- [auth0 token-exchange list](auth0_token-exchange_list.md) - List your token exchange profiles
+- [auth0 token-exchange show](auth0_token-exchange_show.md) - Show a token exchange profile
+- [auth0 token-exchange update](auth0_token-exchange_update.md) - Update a token exchange profile
+
+

docs/auth0_token-exchange_list.md

@@ -0,0 +1,53 @@
+---
+layout: default
+parent: auth0 token-exchange
+has_toc: false
+---
+# auth0 token-exchange list
+
+List your existing token exchange profiles. To create one, run: `auth0 token-exchange create`.
+
+## Usage
+```
+auth0 token-exchange list [flags]
+```
+
+## Examples
+
+```
+  auth0 token-exchange list
+  auth0 token-exchange ls
+  auth0 token-exchange ls --json
+  auth0 token-exchange ls --json-compact
+  auth0 token-exchange ls --csv
+```
+
+
+## Flags
+
+```
+      --csv            Output in csv format.
+      --json           Output in json format.
+      --json-compact   Output in compact json format.
+```
+
+
+## Inherited Flags
+
+```
+      --debug           Enable debug mode.
+      --no-color        Disable colors.
+      --no-input        Disable interactivity.
+      --tenant string   Specific tenant to use.
+```
+
+
+## Related Commands
+
+- [auth0 token-exchange create](auth0_token-exchange_create.md) - Create a new token exchange profile
+- [auth0 token-exchange delete](auth0_token-exchange_delete.md) - Delete a token exchange profile
+- [auth0 token-exchange list](auth0_token-exchange_list.md) - List your token exchange profiles
+- [auth0 token-exchange show](auth0_token-exchange_show.md) - Show a token exchange profile
+- [auth0 token-exchange update](auth0_token-exchange_update.md) - Update a token exchange profile
+
+

docs/auth0_token-exchange_show.md

@@ -0,0 +1,51 @@
+---
+layout: default
+parent: auth0 token-exchange
+has_toc: false
+---
+# auth0 token-exchange show
+
+Display the name, subject token type, action ID, type and other information about a token exchange profile.
+
+## Usage
+```
+auth0 token-exchange show [flags]
+```
+
+## Examples
+
+```
+  auth0 token-exchange show
+  auth0 token-exchange show <profile-id>
+  auth0 token-exchange show <profile-id> --json
+  auth0 token-exchange show <profile-id> --json-compact
+```
+
+
+## Flags
+
+```
+      --json           Output in json format.
+      --json-compact   Output in compact json format.
+```
+
+
+## Inherited Flags
+
+```
+      --debug           Enable debug mode.
+      --no-color        Disable colors.
+      --no-input        Disable interactivity.
+      --tenant string   Specific tenant to use.
+```
+
+
+## Related Commands
+
+- [auth0 token-exchange create](auth0_token-exchange_create.md) - Create a new token exchange profile
+- [auth0 token-exchange delete](auth0_token-exchange_delete.md) - Delete a token exchange profile
+- [auth0 token-exchange list](auth0_token-exchange_list.md) - List your token exchange profiles
+- [auth0 token-exchange show](auth0_token-exchange_show.md) - Show a token exchange profile
+- [auth0 token-exchange update](auth0_token-exchange_update.md) - Update a token exchange profile
+
+

docs/auth0_token-exchange_update.md

@@ -0,0 +1,61 @@
+---
+layout: default
+parent: auth0 token-exchange
+has_toc: false
+---
+# auth0 token-exchange update
+
+Update a token exchange profile.
+
+To update interactively, use `auth0 token-exchange update` with no arguments.
+
+To update non-interactively, supply the profile id, name, and subject token type through the flags.
+
+Note: Only name and subject token type can be updated. Action ID and type are immutable after creation.
+
+## Usage
+```
+auth0 token-exchange update [flags]
+```
+
+## Examples
+
+```
+  auth0 token-exchange update
+  auth0 token-exchange update <profile-id>
+  auth0 token-exchange update <profile-id> --name "Updated Profile Name"
+  auth0 token-exchange update <profile-id> --name "Updated Profile Name" --subject-token-type "urn:ietf:params:oauth:token-type:jwt"
+  auth0 token-exchange update <profile-id> -n "Updated Profile Name" -s "urn:ietf:params:oauth:token-type:jwt" --json
+  auth0 token-exchange update <profile-id> -n "Updated Profile Name" -s "urn:ietf:params:oauth:token-type:jwt" --json-compact
+```
+
+
+## Flags
+
+```
+      --json                        Output in json format.
+      --json-compact                Output in compact json format.
+  -n, --name string                 Name of the token exchange profile.
+  -s, --subject-token-type string   Type of the subject token. Must be a valid URI format (e.g., urn:ietf:params:oauth:token-type:jwt). Cannot use reserved prefixes: http://auth0.com, https://auth0.com, http://okta.com, https://okta.com, urn:ietf, urn:auth0, urn:okta.
+```
+
+
+## Inherited Flags
+
+```
+      --debug           Enable debug mode.
+      --no-color        Disable colors.
+      --no-input        Disable interactivity.
+      --tenant string   Specific tenant to use.
+```
+
+
+## Related Commands
+
+- [auth0 token-exchange create](auth0_token-exchange_create.md) - Create a new token exchange profile
+- [auth0 token-exchange delete](auth0_token-exchange_delete.md) - Delete a token exchange profile
+- [auth0 token-exchange list](auth0_token-exchange_list.md) - List your token exchange profiles
+- [auth0 token-exchange show](auth0_token-exchange_show.md) - Show a token exchange profile
+- [auth0 token-exchange update](auth0_token-exchange_update.md) - Update a token exchange profile
+
+

docs/index.md

@@ -102,6 +102,7 @@ Authenticating as a user is not supported for **private cloud** tenants. Instead
 - [auth0 tenants](auth0_tenants.md) - Manage configured tenants
 - [auth0 terraform](auth0_terraform.md) - Manage terraform configuration for your Auth0 Tenant
 - [auth0 test](auth0_test.md) - Try your Universal Login box or get a token
+- [auth0 token-exchange](auth0_token-exchange.md) - Manage token exchange profiles
 - [auth0 universal-login](auth0_universal-login.md) - Manage the Universal Login experience
 - [auth0 users](auth0_users.md) - Manage resources for users
 

go.mod

@@ -6,7 +6,7 @@ require (
 	github.com/AlecAivazis/survey/v2 v2.3.7
 	github.com/PuerkitoBio/rehttp v1.4.0
 	github.com/atotto/clipboard v0.1.4
-	github.com/auth0/go-auth0 v1.32.0
+	github.com/auth0/go-auth0 v1.32.1
 	github.com/briandowns/spinner v1.23.2
 	github.com/charmbracelet/glamour v0.10.0
 	github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e

go.sum

@@ -22,8 +22,8 @@ github.com/apparentlymart/go-textseg/v15 v15.0.0 h1:uYvfpb3DyLSCGWnctWKGj857c6ew
 github.com/apparentlymart/go-textseg/v15 v15.0.0/go.mod h1:K8XmNZdhEBkdlyDdvbmmsvpAG721bKi0joRfFdHIWJ4=
 github.com/atotto/clipboard v0.1.4 h1:EH0zSVneZPSuFR11BlR9YppQTVDbh5+16AmcJi4g1z4=
 github.com/atotto/clipboard v0.1.4/go.mod h1:ZY9tmq7sm5xIbd9bOK4onWV4S6X0u6GY7Vn0Yu86PYI=
-github.com/auth0/go-auth0 v1.32.0 h1:PuojPRBDQPvFMtXDX7ags8ackLVYXDU7gpTi7/8sEws=
-github.com/auth0/go-auth0 v1.32.0/go.mod h1:32sQB1uAn+99fJo6N819EniKq8h785p0ag0lMWhiTaE=
+github.com/auth0/go-auth0 v1.32.1 h1:AAXQqaNaFZWkRm2bg5mVVXpqDLmusv7v238uIaxuFpo=
+github.com/auth0/go-auth0 v1.32.1/go.mod h1:32sQB1uAn+99fJo6N819EniKq8h785p0ag0lMWhiTaE=
 github.com/aybabtme/iocontrol v0.0.0-20150809002002-ad15bcfc95a0 h1:0NmehRCgyk5rljDQLKUO+cRJCnduDyn11+zGZIc9Z48=
 github.com/aybabtme/iocontrol v0.0.0-20150809002002-ad15bcfc95a0/go.mod h1:6L7zgvqo0idzI7IO8de6ZC051AfXb5ipkIJ7bIA2tGA=
 github.com/aymanbagabas/go-osc52/v2 v2.0.1 h1:HwpRHbFMcZLEVr42D4p7XBqjyuxQH5SMiErDT4WkJ2k=

internal/auth/auth.go

@@ -148,6 +148,7 @@ var RequiredScopes = []string{
 	"read:attack_protection", "update:attack_protection",
 	"read:event_streams", "create:event_streams", "update:event_streams", "delete:event_streams",
 	"read:network_acls", "create:network_acls", "update:network_acls", "delete:network_acls",
+	"read:token_exchange_profiles", "create:token_exchange_profiles", "update:token_exchange_profiles", "delete:token_exchange_profiles",
 }
 
 // GetDeviceCode kicks-off the device authentication flow by requesting

internal/auth0/auth0.go

@@ -32,6 +32,7 @@ type API struct {
 	Role                 RoleAPI
 	Rule                 RuleAPI
 	Tenant               TenantAPI
+	TokenExchange        TokenExchangeAPI
 	User                 UserAPI
 	Jobs                 JobsAPI
 	SelfServiceProfile   SelfServiceProfileAPI
@@ -66,6 +67,7 @@ func NewAPI(m *management.Management) *API {
 		Role:                 m.Role,
 		Rule:                 m.Rule,
 		Tenant:               m.Tenant,
+		TokenExchange:        m.TokenExchangeProfile,
 		User:                 m.User,
 		Jobs:                 m.Job,
 		SelfServiceProfile:   m.SelfServiceProfile,