InvoanceInvoance
Log inStart free
Developers
Search docs…⌘K
Getting started
OverviewConceptsAuthenticationCreate an API key
API reference
EndpointsErrors
Audit Logs
Quick startIntegrationsEvent schemaExporting eventsSDK reference
AI Attestations
Quick startAttestation schemaVerification & proofSDK reference
Events
OverviewSDK reference
Documents
OverviewSDK reference
Traces
OverviewSDK reference
SDKs
PythonNode.jsGoJavaRubyRust.NETPHPcURL
Verification
How it works
Support
API FAQ
Developers·Audit Logs·Integrations·Auth0

Auth0

Stream Auth0 tenant logs to Invoance and every organization in your app starts accumulating signed, independently verifiable audit events (sign-ins, signups, password and email changes) before your team writes a line of instrumentation. Every delivery is verified against the Authorization token you configured.

Set up

  1. Create the integration in Dashboard → Audit Logs → Integrations (provider: Auth0). Auth0 doesn't issue a secret; you invent one, so hit Generate and copy both the URL and the token.
  2. In the Auth0 Dashboard, open Monitoring → Streams → Create Stream → Custom Webhook.
  3. Payload URL: your webhook URL · Content Type: application/json · Content Format: JSON Array · Authorization Token: the generated value. Auth0 sends it on every delivery and Invoance verifies it matches.
  4. Pick the stream's category filters; only the codes below become events.

Log-code map

Verified log entries are translated into a clean audit vocabulary, Ed25519-signed, and sealed into each organization's gap-free sequence, identical to events sent via the API.

Log codeAuth0 meaningBecomes
sSuccessful loginuser.signed_in
sloUser successfully logged outuser.signed_out
f / fp / fuFailed login (generic / wrong password / unknown user)user.sign_in_failed (exact code kept in metadata)
ssSuccessful signupuser.created
sduUser successfully deleteduser.deleted
scpSuccessful password changeuser.password_changed
sceSuccessful email changeuser.email_changed
limit_wc / limit_muIP blocked after repeated failed loginsaccount.blocked (code kept in metadata)

Deliveries arrive batched; each entry is processed independently and deduplicated by its Auth0 log id, so replays and partial retries never create duplicates. Events made in an Auth0 Organization context carry org_id / org_name and route (and auto-create) accordingly; events without one follow your org-less policy. Sign-ins and failed logins are high-volume, so filter your stream categories with your allotment in mind.

Response codes, retry behavior, quota rules, and org routing are shared by every provider and documented under delivery semantics on the Integrations overview. Once events are flowing, the quick start shows how to instrument your product's own actions with one call each.

Invoance

Neutral digital proof infrastructure for business. Tamper-evident, independently verifiable records.

Subscribe to our newsletter

Products
Platform
How It Works
Developers
Verify
Resources
Help & Legal
Products
  • Event Ledger
  • Document Anchoring
  • AI Attestation
  • Audit Logs
Platform
  • Why Invoance
  • For Compliance Teams
  • For Finance Teams
  • Pricing
How It Works
  • Overview
  • Event Ledger
  • Document Anchoring
  • AI Attestation
Developers
  • Overview
  • Endpoints
  • Authentication
  • Concepts
Verify
  • Verify Document
  • Verify AI Attestation
  • Verify Event
  • Verify Trace
Resources
  • All Resources
  • SOC 2 Guide
  • HIPAA Guide
  • ISO 27001 Guide
Help & Legal
  • Support
  • Status
  • Verification Help
  • FAQ

Invoance provides technical verification and proof infrastructure for digital records. Invoance does not issue legal, financial, or regulatory advice.

Records anchored through Invoance are cryptographically signed and tamper-evident by design. Invoance does not verify the accuracy, legality, or authenticity of document contents, only that a record existed in a specific form at a specific time. Verification links are publicly resolvable and do not require authentication. Invoance does not act as a custodian of funds, a legal authority, or a regulated financial entity. Use of Invoance does not constitute legal compliance. Consult qualified counsel for your specific obligations.

© 2025 – 2026 Invoance, Inc. All rights reserved.••