---
title: "April 2025 in Auth0: Auth That Works for Humans and AI"
description: "Discover the latest releases, updates, events, and developer-related things from Auth0!"
authors:
- name: "Ana Cidre"
url: "https://auth0.com/blog/authors/ana-cidre/"
date: "May 2, 2025"
category: "Announcements,Company News,April"
tags: ["auth0", "mcp", "ai", "events", "conference"]
url: "https://auth0.com/blog/april-2025-in-auth0-auth-that-works-for-humans-and-ai/"
---
# April 2025 in Auth0: Auth That Works for Humans and AI
*TL;DR: Auth0 for AI Agents (formally Auth for GenAI) is now in Developer Preview, bringing User Authentication, Token Vault, Async Authorization, and FGA for RAG together in a single solution for AI-powered applications. The Auth0 MCP Server uses OAuth 2.0 Device Flow to let AI tools like Claude Desktop and Cursor manage tenant configuration with natural language. Token Vault is in Early Access, managing token storage and refresh for third-party APIs on behalf of users.*
This month, Auth0 takes a big step toward the future of identity—one where AI agents, natural language interfaces, and human users coexist securely. April’s updates are centered on helping developers build for this new reality.
From Auth for GenAI, a developer-first identity solution purpose-built for AI agents and secure delegation, to the new MCP Server, which lets AI tools manage tenant configuration with natural language, this release is packed with tools that make complex auth feel simple, even in AI-first workflows.
Let’s take a look at what’s new, what’s in preview, and what you can start building with right now.
## Updates You Don’t Want to Miss
### Auth for GenAI – Developer Preview now available
Generative AI is transforming how apps interact with users and how users interact with data. But securing those interactions hasn’t always been easy. That’s why we built [Auth for GenAI](https://auth0.com/blog/introducing-auth-for-genai-launching-identity-for-ai-agents/), now in **Developer Preview**.
This new solution brings together everything you need to securely build AI-powered applications, whether you're embedding AI agents, enabling human-in-the-loop workflows, or orchestrating actions across third-party APIs.
**Highlights:**
* **User Authentication** for AI agents, with support for linking, impersonation, and delegation
* **Token Vault** to securely manage and refresh access tokens for third-party APIs (e.g., Gmail, Slack, GitHub)
* **Async Authorization** to support workflows that require delayed human approval
* **Fine-Grained Authorization (FGA)** for document-level permissions in Retrieval-Augmented Generation (RAG)
Works with LangChain, LlamaIndex, GenKit, and Vercel’s AI SDK.
> [Get started with Auth for GenAI](https://auth0.com/ai/docs)
### Auth0 MCP Server – Natural language meets tenant management
The new [Auth0 MCP Server](https://auth0.com/blog/announcement-auth0-mcp-server-is-here/) brings the power of natural language interfaces directly to your Auth0 tenant.
Using the **Model Context Protocol (MCP)**, you can now authorize AI tools like **Claude Desktop, Cursor, or Windsurf** to safely interact with your tenant—whether that's updating configurations, deploying Actions, or managing APIs—all through secure, context-aware requests.
**Highlights:**
* **Secure login** via OAuth 2.0 Device Flow
* **Credential storage** via system keychain
* **Rich management APIs**, including support for tenant logs, app configuration, and more
* **Built-in access controls**, so AI agents only do what they’re allowed to.
> If you want to learn more about Auth0 MCP Server, you can read the announcement [here](https://auth0.com/blog/announcement-auth0-mcp-server-is-here/).
### Token Vault – Secure access to external APIs (Early Access)
Managing API access on behalf of users can be tricky—especially when it comes to storing and refreshing third-party tokens securely. Enter **Token Vault**, now in **Early Access** for Public Cloud tenants.
**Token Vault** allows your applications and AI agents to call external APIs—like Google Calendar, GitHub, or Microsoft Graph—**on behalf of the user**, without you having to build and maintain complex refresh workflows or custom integrations.
**Why it matters:**
* **Delegated API Access** – Securely call downstream APIs on the user’s behalf using short-lived access tokens.
* **No Refresh Token Handling** – Auth0 manages token storage and refresh cycles for you.
* **Supports Top Providers** – Integrates with popular identity providers like Google, GitHub, and Microsoft.
* **AI-Ready** – Designed to work seamlessly with **Auth for GenAI**, enabling AI agents to act on behalf of users across different services.
> Learn more in the [Token Vault documentation ](https://auth0.com/docs/secure/tokens/token-vault).
Or see how it works with GenAI apps: [Call APIs on User’s Behalf](https://auth0.com/ai/docs/call-others-apis-on-users-behalf).
Note:
Token Vault is currently available only for Public Cloud tenants. Contact your Technical Account Manager to enable Early Access.
### More cool features we have shipped to improve your experience:
#### Real-Time logs for Actions – Now Generally Available
Debugging just got a whole lot easier. **Real-Time Logs for Actions**, Custom Database Scripts, and Custom Social Connections is now **GA**. Developers can now see console outputs (like `console.log`) in real-time directly from the Auth0 Dashboard. Find it under **Dashboard > Monitoring > Action Logs**
#### Mobile Driver’s License verification – Limited Early Access
We’re excited to introduce the **Mobile Driver’s License (mDL) Verification Service**, now in **Limited Early Access**. This new capability enables businesses and platforms to enrich user profiles during sign-up or login using **trusted, government-issued identity data**. Whether embedded in your **authorization flows** via our Forms widget or triggered **on-demand**, mDL verification unlocks a seamless, secure identity experience.
#### New US Public Cloud Region – prod-us-5 Now Live
Auth0 is growing with you. We’ve launched a new US Public Cloud environment: **`prod-us-5`**. This expansion increases regional capacity and performance for onboarding new Auth0 Public Cloud customers—while maintaining full support for **Auth0’s Authentication and Management capabilities**.
## Community and Events
We’ve been on the road sharing ideas, best practices, and demos around the future of identity and AI.
### Where were we in April
* **VoxxedDays Amsterdam (Apr 3):** Deepu shared AI authorization strategies for LangChain and OpenFGA
* **Apidays Singapore (Apr 15–16):** Daizen covered scaling SaaS platforms for enterprise readiness
* **AWS Summit Amsterdam (Apr 16)**
* **React Miami (Apr 17–18)**
* **PyCon DE (Apr 23–25):** Juan Cruz Martinez presented on secure human-in-the-loop AI interactions
* **CityJS London (Apr 23–25)**
* **Vue.js Global Summit ‘25 – AI Edition (Apr 29–30):** Ramona Schwering’s talk: *Developer’s Guide to Not Summoning Skynet*
* **AWS Summit London (Apr 30)**
Thanks to everyone who stopped by — we loved connecting with builders across the world.
### Where we’ll be in May
**Looking ahead to May, you’ll find us at a variety of developer and tech-forward events across the globe. Come chat identity, APIs, AI, and all things dev with the Auth0 team:**
* **ADC Conference (5-7 May): **Ramona will be giving a talk, “The AI Developer's Guide to Not Accidentally Summoning Skynet.”
* **Infobip Shift (May 6) – **Carla will be talking about “Securing AI: A Journey Through Access Control Systems.”
* **API Days New York - Generation AI (May 14) – **Ramona will be talking about security and AI
* **Dublin Tech Summit (28-29 May)** – Two days of tech talks, networking, and developer energy
Planning to attend? Let us know—we’d love to meet up!
## That’s a Wrap for April
As AI becomes more integrated into the software we build, so does the need for thoughtful, secure identity design. With **Auth for GenAI**, **Token Vault**, the **MCP Server**, and new features like **mDL Verification** and **Real-Time Logs**, we’re here to help you ship smarter, safer, and more scalable apps.
Stay secure.
Keep shipping.
We’re here if you need us.