You can view the permissions assigned to a user using the . This task can also be performed using the . The assigned permissions are used with the API Authorization Core feature set.

Prerequisites

For role-based access control (RBAC) to work properly, you must enable it for your API using either the Dashboard or the Management API. The Authorization Core functionality is different from the Authorization Extension. For a comparison, read Authorization Core vs. Authorization Extension.

Dashboard

  1. Go to Dashboard > Manage Users > Users and click the name of the user to view.
  2. Click the Permissions view.
    Auth0 Dashboard User Detail list of permissions assigned to this user
The following information is displayed for each permission:
ColumnDescription
NameName of the permission from the permission definition.
DescriptionDescription of the permission from the permission definition.
APIName of the API to which the permission is attached.
AssignmentIndicates whether the permission is directly assigned to the user or is assigned via a role.

Management API

Make a GET call to the Get User Permissions endpoint. Be sure to replace USER_ID and MGMT_API_ACCESS_TOKEN placeholder values with your user ID and Management API , respectively. 
curl --request GET \
  --url 'https://{yourDomain}/api/v2/users/USER_ID/permissions' \
  --header 'authorization: Bearer MGMT_API_ACCESS_TOKEN'
ValueDescription
USER_IDΤhe ID of the user for whom you want to get permissions.
MGMT_API_ACCESS_TOKENAccess Token for the Management API with the scope read:users.

Learn more