auth0
diff --git a/‎articles/api/info.md
+15-23 b/‎articles/api/info.md
+15-23
diff --git a/‎articles/api/management/guides/rules/create-rules.md
+43 b/‎articles/api/management/guides/rules/create-rules.md
+43
diff --git a/‎articles/architecture-scenarios/server-api/part-2.md
+15-15 b/‎articles/architecture-scenarios/server-api/part-2.md
+15-15
@@ -1,6 +1,5 @@
 ---
-title: Auth0 APIs
-description: Learn about Auth0's Management and Authentication APIs.
+description: This page explains the basics of Auth0's Management and Authentication APIs.
 section: apis
 crews: crew-2
 topics:
@@ -10,22 +9,22 @@ topics:
 contentType: reference
 useCase: invoke-api
 ---
-# Auth0 APIs
 
-Auth0 exposes the following APIs for developers to consume in their applications.
+# Auth0 APIs
 
-## Authentication API
+Auth0 exposes two APIs for developers to consume in their applications:
 
-The Authentication API exposes identity functionality for Auth0 and supported identity protocols (including <dfn data-key="openid">OpenID Connect</dfn>, OAuth, and <dfn data-key="security-assertion-markup-language">SAML</dfn>). 
+* **Authentication**: Handles identity-related tasks;
+* **Management**: Handles management of your Auth0 account, including functions related to (but not limited to):
 
-Typically, you should consume this API through one of the Auth0 SDKs, such as [Auth0.js](/libraries/auth0js), or a library like [Lock](/libraries/lock). However, if you are building your authentication UI manually, you will need to call the Authentication API directly.
+    * Applications;
+    * Connections;
+    * Emails;
+    * Users.
 
-Some example tasks include:
+## Authentication API
 
-* getting [tokens](/tokens) during authentication
-* requesting a user's profile using an [Access Token](/tokens/access-tokens)
-* exchanging [Refresh Tokens](/tokens/refresh-token) for new Access Tokens
-* requesting a challenge for [multi-factor authentication (MFA)](/multifactor-authentication)
+The Authentication API exposes Auth0 identity functionality, as well as those of supported identity protocols (such as <dfn data-key="openid">OpenID Connect</dfn>, OAuth, and <dfn data-key="security-assertion-markup-language">SAML</dfn>). Typically, you consume this API through one of the Auth0 SDKs, such as [Auth0.js](/libraries/auth0js) or a library like [Lock](/libraries/lock). If you are building your authentication UI manually, you will need to interface directly with the Authentication API.
 
 <div class="api-info-wrapper">
   <div class="block-links">
@@ -35,7 +34,7 @@ Some example tasks include:
           <div class="wrapper-left">
             <a href="/auth-api" class="illustration i-apiexplorer"></a>
             <h4>API Explorer</h4>
-            <p>Explore the requests and responses for Auth0 Authentication API endpoints in your browser.</p>
+            <p>Learn about and use the Auth0 Authentication API in the browser.</p>
             <p><a href="/auth-api">Open API Explorer</a></p>
           </div>
         </div>
@@ -55,14 +54,7 @@ Some example tasks include:
 
 ## Management API v2
 
-The Management API allows you to manage your Auth0 account programmatically, so you can automate configuration of your environment. Most of the tasks you can perform in the Auth0 Management Dashboard can also be performed programmatically by using this API.
-
-Some example tasks include:
-
-* registering your applications and APIs with Auth0
-* setting up [connections](/connections) with which your users can authenticate
-* [managing users](/users)
-* [linking user accounts](/link-accounts)
+The Management API allows you to manage every aspect of your Auth0 account. For example, you can use the Management API to automate the configuration of your user environments or for runtime tasks such as user creation.
 
 <div class="api-info-wrapper">
   <div class="block-links">
@@ -72,7 +64,7 @@ Some example tasks include:
           <div class="wrapper-left">
             <a href="/api/v2" class="illustration i-apiexplorer"></a>
             <h4>API Explorer</h4>
-            <p>Explore the requests and responses for Auth0 Management API endpoints in your browser.</p>
+            <p>Learn about and use the Auth0 Management API in the browser.</p>
             <p><a href="/api/v2">Open API Explorer</a></p>
           </div>
         </div>
@@ -92,4 +84,4 @@ Some example tasks include:
 
 ### Management API v1 - DEPRECATED
 
-The Management API v1 is deprecated and should not be used for new projects. If your existing application uses Management API v1, please see the [Management API v1 documentation](/api/management/v1).
+The Management API v1 is deprecated and should not be used for new projects. If your existing application uses Management API v1, refer to the [Management API v1 documentation](/api/management/v1).
@@ -0,0 +1,43 @@
+---
+title: Create Rules
+description: Learn how to create a rule using the Auth0 Management API. You can use rules to customize and extend Auth0's capabilities.
+topics:
+  - mgmt-api
+  - rules
+  - extensibility
+contentType: 
+  - how-to
+useCase:
+  - build-an-app
+  - call-api
+  - secure-api
+---
+# Create Rules
+
+This guide will show you how to create [rules](/rules) using Auth0's Management API. This task can also be performed [using the Dashboard](/dashboard/guides/rules/create-rules).
+
+1. Make a `POST` call to the [Create Rule endpoint](/api/management/v2#!/Rules/post_rules). Be sure to replace `MGMT_API_ACCESS_TOKEN`, `RULE_NAME`, `RULE_SCRIPT`, `RULE_ORDER`, and `RULE_ENABLED` placeholder values with your Management API Access Token, rule name, rule script, rule order number, and rule enabled value, respectively.
+
+```har
+{
+	"method": "POST",
+	"url": "https://${account.namespace}/api/v2/roles",
+  "headers": [
+  	{ "name": "Content-Type", "value": "application/json" },
+  	{ "name": "Authorization", "value": "Bearer MGMT_API_ACCESS_TOKEN" },
+  	{ "name": "Cache-Control", "value": "no-cache" }
+	],
+	"postData": {
+    "mimeType": "application/json",
+    "text" : "{ \"name\": \"RULE_NAME\", \"script\": \"RULE_SCRIPT\" }"
+	}
+}
+```
+
+| **Value** | **Description** |
+| - | - |
+| `MGMT_API_ACCESS_TOKEN`  | [Access Token for the Management API](/api/management/v2/tokens) with the <dfn data-key="scope">scope</dfn> `create:rules`. |
+| `RULE_NAME` | Name of the rule you would like to create. The rule name can only contain alphanumeric characters, spaces, and hyphens; it may not start or end with spaces or hyphens. |
+| `RULE_SCRIPT` | Script that contains the code for the rule. Should match what you would enter if you were [creating a new rule using the Dashboard](/dashboard/guides/rules/create-rules). |
+| `RULE_ORDER` (optional) | Integer that represents the order in which the rule should be executed in relation to other rules. Rules with lower numbers are executed before rules with higher numbers. If no order number is provided, the rule will execute last.
+| `RULE_ENABLED` (optional) | Boolean that represents whether the rules is enabled (`true`) or disabled (`false`). |
@@ -16,7 +16,7 @@ useCase:
 
 # Server + API: Auth0 Configuration
 
-In this section, we will review all the configurations we need to apply using the [Auth0 Dashboard](${manage_url}).
+In this section we will review all the configurations we need to apply using the [Auth0 Dashboard](${manage_url}).
 
 ## Configure the API
 
@@ -30,17 +30,17 @@ You will be required to supply the following details for your API:
 
 ![Create API](/media/articles/architecture-scenarios/server-api/create-api.png)
 
-Fill in the required information, and click the **Create** button.
+Fill in the required information and click the **Create** button.
 
 ### Signing Algorithms
 
-When you create an API, you must select the algorithm with which your tokens will be signed. The signature is used to verify that the sender of the JWT is who it says it is and to ensure that the message wasn't changed along the way.
+When you create an API you have to select the algorithm your tokens will be signed with. The signature is used to verify that the sender of the JWT is who it says it is and to ensure that the message wasn't changed along the way.
 
 ::: note
-The signature is part of a JWT. If you are unfamiliar with JWT structure, please see [JSON Web Token Structure](/tokens/reference/jwt/jwt-structure).
+  The signature is part of a JWT. If you are not familiar with the JWT structure please refer to: [JSON Web Tokens (JWTs) in Auth0](/jwt#what-is-the-json-web-token-structure-).
 :::
 
-To create the signature, you must take the encoded header, the encoded payload, a secret, the algorithm specified in the header, and sign that. That algorithm, which is part of the JWT header, is the one you select for your API: `HS256` or `RS256`.
+To create the signature part you have to take the encoded header, the encoded payload, a secret, the algorithm specified in the header, and sign that. That algorithm, which is part of the JWT header, is the one you select for your API: `HS256` or `RS256`.
 
 - **RS256** is an [asymmetric algorithm](https://en.wikipedia.org/wiki/Public-key_cryptography) which means that there are two keys: one public and one private (secret). Auth0 has the secret key, which is used to generate the signature, and the consumer of the JWT has the public key, which is used to validate the signature.
 
@@ -56,47 +56,47 @@ For a more detailed overview of the JWT signing algorithms refer to: [JSON Web T
 
 ## Configure the Scopes
 
-Once the application has been created, you will need to configure the Scopes that applications can request during authorization.
+Once the application has been created you will need to configure the Scopes which applications can request during authorization.
 
-In the settings for your API, go to the *Scopes* tab. In this section, add all four of the scopes discussed before: `read:timesheets`, `create:timesheets`, `delete:timesheets`, and `approve:timesheets`. Also add an additional scope: `batch:upload`.
+In the settings for your API, go to the *Scopes* tab. In this section you can add all four of the scopes which was discussed before, namely `batch:upload`, `read:timesheets`, `create:timesheets`, `delete:timesheets`, `approve:timesheets`.
 
 ::: note
-For the purposes of this document, we will only be concerned with the `batch:upload` scope because that is all that is required by the cron job. However, for the sake of completeness, we are adding the necessary scopes which will be required by future applications.
+  For the purposes of this document we will only be ever concerned with the `batch:upload` scope, as that is all that is required by the Cron job. For completeness sake we are however adding the necessary scopes which will be required by future applications as well.
 :::
 
 ![Add Scopes](/media/articles/architecture-scenarios/server-api/add-scopes.png)
 
 ## Create the Application
 
-When creating an API in the Auth0 Dashboard, a test application for the API will automatically be generated. In the Auth0 Dashboard, navigate to the [Application Section](${manage_url}/#/applications), and you will see the test application for the Timesheets API.
+When creating an API in the Auth0 Dashboard, a test application for the API will automatically be generated. In the Auth0 Dashboard, navigate to the [Application Section](${manage_url}/#/applications) and you will see the test application for the Timesheets API.
 
 ![Machine to Machine Application](/media/articles/architecture-scenarios/server-api/non-interactive-client.png)
 
 Go to the settings for the application by clicking on the gear icon, and rename the application to `Timesheets import Job`.
 
-For the cron job, you will need a Machine-to-Machine Application. The test application that was generated when the API was created was automatically configured as a Machine-to-Machine Application:
+For the cron job you will need a Machine to Machine Application. This test application which was generated when the API was created was automatically configured as a Machine to Machine Application as can be seen in the screenshot below.
 
 ![Machine to Machine Application Settings](/media/articles/architecture-scenarios/server-api/non-interactive-client-settings.png)
 
 ## Configure Application's access to the API
 
-Finally, you must allow the application access to the Timesheets API. Go back to the configuration of the API, and select the *Machine to Machine Application* tab.
+The final part of the Auth0 configuration is to allow the application access to the Timesheets API. Go back to the configuration of the API, and select the *Machine to Machine Application* tab.
 
 You will see the **Timesheets Import Job** application listed, and it should have access to API as can be seen from the switch to the right of the application name which indicates a value of `Authorized`. If it does not indicate that the application is authorized, simply toggle the value of the switch from `Unauthorized` to `Authorized`.
 
 ![Authorize Application](/media/articles/architecture-scenarios/server-api/authorize-client.png)
 
-You will also need to specify which scopes will be included in Access Tokens that are issued to the application when the application authorizes with Auth0.
+You will also need to specify which scopes will be included in Access Tokens which are issued to the application when the application authorizes with Auth0.
 
 Expand the settings for the application by clicking on the down arrow to the far right, and you will see the list of available scopes. The cron job will only require the `batch:upload` scope as it will simply create new timesheets based on the timesheet entries in the external system.
 
-Once you have selected the `batch:upload` scope, save the settings by clicking the **Update** button.
+Once you have selected the `batch:upload` scope you can save the settings by clicking the **Update** button.
 
 ![Assign Scopes](/media/articles/architecture-scenarios/server-api/assign-scopes.png)
 
-Now that we have designed our solution and discussed the configurations needed on Auth0's side, we can proceed with the implementation part. That's what the next paragraph is all about, so keep reading!
+Now that we have designed our solution and discussed the configurations needed on Auth0 side, we can proceed with the implementation part. That's what the next paragraph is all about, so keep reading!
 
 
 <%= include('./_stepnav', {
  prev: ["1. Solution Overview ", "/architecture-scenarios/server-api/part-1"], next: ["3. Application Implementation", "/architecture-scenarios/server-api/part-3"]
-}) %>
+}) %>