Auth0 access hygiene digest
Scheduled read-only Auth0 access governance digest. It reads a bounded page of users, roles, clients, organizations, and logs through recued-core.auth0, renders compact tables, and optionally sends an in-app nudge when matching log events are visible. It never creates or deletes users, changes passwords, mutates MFA, revokes sessions or refresh tokens, changes clients, creates roles, changes organizations, or calls arbitrary Auth0 APIs.
How it works
Inspect the data fetches, transforms, gates, and output this recipe runs.
Process (30 steps)
users_raw
?
roles_raw
?
clients_raw
?
orgs_raw
?
logs_raw
?
users
default
Apply default
roles
default
Apply default
clients
default
Apply default
orgs
default
Apply default
events
default
Apply default
user_count
count
Count items in users
role_count
count
Count items in roles
client_count
count
Count items in clients
org_count
count
Count items in orgs
event_count
count
Count items in events
has_events
compare
Check if event count is greater than 0
notify_enabled
compare
Check if setting notify when events equals true
should_notify
all
Check if all conditions are true
notify
?
skip: step.should_notify not_equal true
user_rows
slice
Take a subset of
role_rows
slice
Take a subset of
client_rows
slice
Take a subset of
org_rows
slice
Take a subset of
event_rows
slice
Take a subset of
user_table
to_table
Format results as a data table
role_table
to_table
Format results as a data table
client_table
to_table
Format results as a data table
org_table
to_table
Format results as a data table
event_table
to_table
Format results as a data table
card
to_summary
Format results as a summary card
Settings
Configurable at install. Defaults shown — change them anytime in Recued.
auth0
setting
=
channels
setting
=
in_app
end hour
setting
=
10
weekdays
setting
=
1,2,3,4,5
log query
setting
=
type:limit_wc OR type:fp OR type:fu
row limit
setting
=
20
start hour
setting
=
8
user query
setting
=
blocked:true OR email_verified:false
role name filter
setting
=
notify when events
setting
=
true
organization query
setting
=
Trust & control
What installing this recipe would let it do. Recued grants these permissions at install — review them there before approving.