steampipe plugin install auth0

Table: auth0_action - Query Auth0 Actions using SQL

Auth0 Actions are code snippets that execute during the transaction lifecycle of Auth0's authentication and authorization process. They allow you to customize and extend Auth0's capabilities by inserting custom logic at specific points, known as extensibility points, in the transaction flow. With Auth0 Actions, you can modify user profiles, perform conditional MFA, enrich tokens, and more.

Table Usage Guide

The auth0_action table provides insights into Actions within Auth0. As a security engineer, explore action-specific details through this table, including the action's script, dependencies, and associated triggers. Utilize it to uncover information about actions, such as their current status, the runtime they use, and the version of the action.

Examples

Deprecated NodeJS 12 based code deployed

Discover the segments that contain outdated NodeJS 12 based code that has been deployed. This can be beneficial in identifying areas that may require updates or migration to newer versions for improved security and performance.

select
id,
name,
supported_triggers,
updated_at
from
auth0_action
where
runtime = 'node12'
and all_changes_deployed;
select
id,
name,
supported_triggers,
updated_at
from
auth0_action
where
runtime = 'node12'
and all_changes_deployed = 1;

Actions triggered post a password change

Explore which actions are initiated following a password change. This can be helpful in understanding and managing security protocols.

select
id,
name,
updated_at
from
auth0_action
where
supported_triggers -> 0 ->> 'id' = 'post-change-password';
select
id,
name,
updated_at
from
auth0_action
where
json_extract(supported_triggers, '$[0].id') = 'post-change-password';

Action code by name

Analyze the settings to understand the specific code associated with an action, such as sending a notification. This can be useful in assessing the elements within your authentication process, particularly in identifying instances where specific actions are triggered.

select
code
from
auth0_action
where
name = 'send-notification';
select
code
from
auth0_action
where
name = 'send-notification';

Deployed actions

Discover the segments that have all their changes deployed in Auth0. This query is useful to understand which areas have the most recent updates, aiding in system management and maintenance.

select
id,
name,
deployed_version ->> 'number' version,
supported_triggers,
updated_at
from
auth0_action
where
all_changes_deployed;
select
id,
name,
json_extract(deployed_version, '$.number') as version,
supported_triggers,
updated_at
from
auth0_action
where
all_changes_deployed;

Schema for auth0_action

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
all_changes_deployedbooleanTrue if all of an Action's contents have been deployed.
built_attimestamp with time zoneThe time when this action was built successfully.
codetextThe source code of the action.
created_attimestamp with time zoneThe time when this action was created.
dependenciesjsonbList of third party npm modules, and their versions, that this action depends on.
deployed_versionjsonbVersion of the action that is currently deployed.
domain_nametext=, !=, ~~, ~~*, !~~, !~~*The name of the domain.
idtext=A unique ID for the action.
nametextThe name of the action.
runtimetextThe Node runtime. For example `node16`, defaults to `node12`.
secretsjsonbList of secrets that are included in an action or a version of an action.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
statustextThe build status of this action.
supported_triggersjsonbList of triggers that this action supports. At this time, an action can only target a single trigger at a time.
updated_attimestamp with time zoneThe time when this action was updated.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- auth0

You can pass the configuration to the command with the --config argument:

steampipe_export_auth0 --config '<your_config>' auth0_action