Bump Auth0.ManagementApi and Auth0Net.DependencyInjection

[dependabot]

Updated Auth0.ManagementApi from 7.46.0 to 8.0.0.

Release notes

Sourced from Auth0.ManagementApi's releases.

8.0.0

8.0.0 (2026-04-02)

Full Changelog

v8 is a major release of Auth0.ManagementApi featuring a completely redesigned, OpenAPI-generated SDK. The Authentication API (Auth0.AuthenticationApi) remains unchanged.

For a comprehensive migration guide with side-by-side examples, see V8_MIGRATION_GUIDE.md.

Added

• OpenAPI-generated Management API SDK using Fern, ensuring the SDK stays up-to-date and consistent with the Auth0 Management API #​964 (kailash-b)
• Automatic token management via ManagementClient wrapper with built-in ClientCredentialsTokenProvider for token acquisition and refresh #​964 (kailash-b)
• Custom token provider support via pluggable ITokenProvider interface, including DelegateTokenProvider for async token retrieval #​926 (kailash-b)
• Strongly typed request and response models (*RequestContent, *ResponseContent, *RequestParameters) for all API operations #​964 (kailash-b)
• Hierarchical sub-client organization for improved discoverability (e.g., client.Users.Roles.ListAsync(), client.Users.Permissions.ListAsync()) #​964 (kailash-b)
• Unified exception hierarchy with specific exception types per HTTP status code (BadRequestError, NotFoundError, TooManyRequestsError, etc.) #​964 (kailash-b)
• Raw HTTP response access via .WithRawResponse() method for status codes, headers, and URL metadata #​964 (kailash-b)
• Optional<T> type to distinguish between undefined and explicitly null values in PATCH operations #​964 (kailash-b)
• Async pagination support via Pager<T> with IAsyncEnumerable<T> for automatic multi-page iteration #​964 (kailash-b)
• Comprehensive interfaces (IManagementApiClient, IUsersClient, etc.) for all clients to simplify dependency injection and testing #​964 (kailash-b)
• Per-request configuration via RequestOptions (timeout, retries, custom headers) #​964 (kailash-b)
• Auth0-Client telemetry header via ClientOptions.Internal partial class #​964 (kailash-b)

Changed

• Serialization library changed from Newtonsoft.Json to System.Text.Json for Auth0.ManagementApi #​964 (kailash-b)
• ManagementClient now inherits from the generated ManagementApiClient, simplifying internals #​964 (kailash-b)
• Client initialization redesigned — use ManagementClient with ManagementClientOptions or ManagementApiClient with a pre-obtained token #​964 (kailash-b)
• Request types renamed from *CreateRequest/*UpdateRequest to *RequestContent naming convention #​964 (kailash-b)
• Response types renamed from domain objects (e.g., User) to *ResponseContent naming convention #​964 (kailash-b)
• Pagination changed from IPagedList<T> with PaginationInfo to Pager<T> with built-in parameters #​964 (kailash-b)
• Exception handling changed from ErrorApiException/RateLimitApiException to typed exceptions (NotFoundError, TooManyRequestsError, etc.) #​964 (kailash-b)
• Namespace imports changed from Auth0.ManagementApi.Models to Auth0.ManagementApi and Auth0.ManagementApi.Core #​964 (kailash-b)
• Dropped .NET 8 as a build-time dependency while maintaining full runtime support #​927 (kailash-b)

Breaking Changes

This release contains breaking changes to client initialization, request/response types, method signatures, serialization, and exception handling. All existing v7 Management API code will require updates to work with v8. See the V8 Migration Guide for detailed upgrade instructions.

Supported Platforms

• .NET 8.0+
• .NET Framework 4.6.2+
• .NET Standard 2.0+

8.0.0-beta.1

8.0.0-beta.1 (2026-03-02)

Full Changelog

Added

• Generated the SDK against the latest available spec.

Changed

• Dropped compile time support for .NET 8.0.

Fixed

• Issue with rendering summary docs for some methods/classes.
• Refactored automatic token management wrapper to support custom token providers and asynchronous token acquisition. #​926 (kailash-b)

8.0.0-beta.0

8.0.0-beta.0 (2026-02-04)

Full Changelog

This is a major version update that represents a complete modernization of the Management API SDK architecture and developer experience.

What's New:

• OpenAPI-Generated SDK: The Management API SDK is now generated from Auth0's OpenAPI specifications using Fern, ensuring consistency, accuracy, and easier maintenance going forward.
• Automatic Token Management: Introduced a new ManagementClient wrapper that handles token acquisition and refresh automatically using client credentials, eliminating the need for manual token management.
• Improved Type Safety: All API operations now use strongly typed request and response models with proper validation and clear naming conventions (*RequestContent, *ResponseContent, *RequestParameters).
• Better Organization: API operations are now organized into logical hierarchical sub-clients (e.g., client.Users.Permissions, client.Users.Roles, client.Organizations.Members) for better discoverability and cleaner code.
• Enhanced Exception Handling: Unified exception hierarchy based on ManagementApiException with specific exception types for different HTTP status codes (NotFoundError, BadRequestError, TooManyRequestsError, etc.).
• New Features:
  • Raw response access via .WithRawResponse() for accessing status codes, headers, and other HTTP metadata
  • Optional<T> type for distinguishing between undefined and explicitly null values in PATCH operations
  • Built-in pagination support with async enumeration
  • Comprehensive interfaces for dependency injection and testing

Breaking Changes:

This is a major version with breaking changes to client initialization, request/response types, method signatures, and exception handling. All existing v7 Management API code will require updates to work with v8. The Authentication API (Auth0.AuthenticationApi) remains unchanged and fully compatible.

Migration Guide:

Please refer to the comprehensive migration guide at V8_MIGRATION_GUIDE.md which includes side-by-side examples and detailed mappings from v7 to v8.

Changed

• Adds v8 for ManagementApi #​911 (kailash-b)

Commits viewable in compare view.

Updated Auth0Net.DependencyInjection from 5.2.1 to 6.0.0.

Release notes

Sourced from Auth0Net.DependencyInjection's releases.

6.0.0

This release contains significant breaking changes due to Auth0.NET being fully rewritten. Stick with v5 unless you're ready to update to Auth0.NET v8.

Breaking Changes

• Support Auth0.NET v8, see the upstream migration guide. Ignore the Client Initialization section as we still handle that for you :).

• Due to changes in Auth0.NET, the domain you pass into AddAuth0AuthenticationClient should be a plain domain without https:// prefixed. If you currently call ToHttpsUrl() on this domain, it should be removed.

• Removed .AddManagementAccessToken(). This is no longer required as .AddAuth0ManagementClient() will automatically wire up token management. Configuration has been moved to AddAuth0ManagementClient(x => ...).

• Removed .AddAuth0RateLimitResilience(), the new Auth0.NET version implements backoffs correctly so this no longer required.

• Renamed .AddAuth0AuthenticationClientCore() to an overload of .AddAuth0AuthenticationClient().

• Removed Management token specific overload from IAuth0TokenCache

New Features

• Added support for Organization-scoped Machine-to-Machine tokens. See the README for more information.

• Added the ability to use your own FusionCache instance via an option on .AddAuth0AuthenticationClient. This is might be handy if you want to cache tokens in a distributed manner.

Full Changelog: Hawxy/Auth0Net.DependencyInjection@v5.2.1...v6.0.0

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)