This month, Auth0 takes a big step toward the future of identity—one where AI agents, natural language interfaces, and human users coexist securely. April’s updates are centered on helping developers build for this new reality.
From Auth for GenAI, a developer-first identity solution purpose-built for AI agents and secure delegation, to the new MCP Server, which lets AI tools manage tenant configuration with natural language, this release is packed with tools that make complex auth feel simple, even in AI-first workflows.
Let’s take a look at what’s new, what’s in preview, and what you can start building with right now.
Updates You Don’t Want to Miss
Auth for GenAI – Developer Preview now available
Generative AI is transforming how apps interact with users and how users interact with data. But securing those interactions hasn’t always been easy. That’s why we built Auth for GenAI, now in Developer Preview.
This new solution brings together everything you need to securely build AI-powered applications, whether you're embedding AI agents, enabling human-in-the-loop workflows, or orchestrating actions across third-party APIs.
Highlights:
- User Authentication for AI agents, with support for linking, impersonation, and delegation
- Token Vault to securely manage and refresh access tokens for third-party APIs (e.g., Gmail, Slack, GitHub)
- Async Authorization to support workflows that require delayed human approval
- Fine-Grained Authorization (FGA) for document-level permissions in Retrieval-Augmented Generation (RAG)
Works with LangChain, LlamaIndex, GenKit, and Vercel’s AI SDK.
Auth0 MCP Server – Natural language meets tenant management
The new Auth0 MCP Server brings the power of natural language interfaces directly to your Auth0 tenant.
Using the Model Context Protocol (MCP), you can now authorize AI tools like Claude Desktop, Cursor, or Windsurf to safely interact with your tenant—whether that's updating configurations, deploying Actions, or managing APIs—all through secure, context-aware requests.
Highlights:
- Secure login via OAuth 2.0 Device Flow
- Credential storage via system keychain
- Rich management APIs, including support for tenant logs, app configuration, and more
- Built-in access controls, so AI agents only do what they’re allowed to.
If you want to learn more about Auth0 MCP Server, you can read the announcement here.
Token Vault – Secure access to external APIs (Early Access)
Managing API access on behalf of users can be tricky—especially when it comes to storing and refreshing third-party tokens securely. Enter Token Vault, now in Early Access for Public Cloud tenants.
Token Vault allows your applications and AI agents to call external APIs—like Google Calendar, GitHub, or Microsoft Graph—on behalf of the user, without you having to build and maintain complex refresh workflows or custom integrations.
Why it matters:
- Delegated API Access – Securely call downstream APIs on the user’s behalf using short-lived access tokens.
- No Refresh Token Handling – Auth0 manages token storage and refresh cycles for you.
- Supports Top Providers – Integrates with popular identity providers like Google, GitHub, and Microsoft.
- AI-Ready – Designed to work seamlessly with Auth for GenAI, enabling AI agents to act on behalf of users across different services.
Learn more in the Token Vault documentation .
Or see how it works with GenAI apps: Call APIs on User’s Behalf.
More cool features we have shipped to improve your experience:
Real-Time logs for Actions – Now Generally Available
Debugging just got a whole lot easier. Real-Time Logs for Actions, Custom Database Scripts, and Custom Social Connections is now GA. Developers can now see console outputs (like
console.logMobile Driver’s License verification – Limited Early Access
We’re excited to introduce the Mobile Driver’s License (mDL) Verification Service, now in Limited Early Access. This new capability enables businesses and platforms to enrich user profiles during sign-up or login using trusted, government-issued identity data. Whether embedded in your authorization flows via our Forms widget or triggered on-demand, mDL verification unlocks a seamless, secure identity experience.
New US Public Cloud Region – prod-us-5 Now Live
Auth0 is growing with you. We’ve launched a new US Public Cloud environment:
. This expansion increases regional capacity and performance for onboarding new Auth0 Public Cloud customers—while maintaining full support for Auth0’s Authentication and Management capabilities.prod-us-5
Community and Events
We’ve been on the road sharing ideas, best practices, and demos around the future of identity and AI.
Where were we in April
- VoxxedDays Amsterdam (Apr 3): Deepu shared AI authorization strategies for LangChain and OpenFGA
- Apidays Singapore (Apr 15–16): Daizen covered scaling SaaS platforms for enterprise readiness
- AWS Summit Amsterdam (Apr 16)
- React Miami (Apr 17–18)
- PyCon DE (Apr 23–25): Juan Cruz Martinez presented on secure human-in-the-loop AI interactions
- CityJS London (Apr 23–25)
- Vue.js Global Summit ‘25 – AI Edition (Apr 29–30): Ramona Schwering’s talk: Developer’s Guide to Not Summoning Skynet
- AWS Summit London (Apr 30)
Thanks to everyone who stopped by — we loved connecting with builders across the world.
Where we’ll be in May
Looking ahead to May, you’ll find us at a variety of developer and tech-forward events across the globe. Come chat identity, APIs, AI, and all things dev with the Auth0 team:
- ADC Conference (5-7 May): Ramona will be giving a talk, “The AI Developer's Guide to Not Accidentally Summoning Skynet.”
- Infobip Shift (May 6) – Carla will be talking about “Securing AI: A Journey Through Access Control Systems.”
- API Days New York - Generation AI (May 14) – Ramona will be talking about security and AI
- Dublin Tech Summit (28-29 May) – Two days of tech talks, networking, and developer energy
Planning to attend? Let us know—we’d love to meet up!
That’s a Wrap for April
As AI becomes more integrated into the software we build, so does the need for thoughtful, secure identity design. With Auth for GenAI, Token Vault, the MCP Server, and new features like mDL Verification and Real-Time Logs, we’re here to help you ship smarter, safer, and more scalable apps.
Stay secure.
Keep shipping.
We’re here if you need us.
About the author
Ana Cidre
Sr Manager, Developer Advocacy
Ana Cidre is a passionate advocate for the developer community and leads the Developer Advocacy team at Auth0. She's committed to fostering a more inclusive and diverse tech world, drawing on her technical background and strategic vision to improve developer experiences and build meaningful connections.
As the founder of GalsTech, an initiative supporting women in tech in Galicia, and through her active efforts to create welcoming spaces for underrepresented groups, Ana's dedication to diversity and inclusion extends beyond her daily work.
Ana has a proven track record of building global Developer Relations teams, cultivating active developer communities, and crafting impactful educational content. She maintains a strong connection to the community through speaking engagements and direct interaction with developers.