fix(userAttributeProfiles): handle 403 if feature is not enabled

src/tools/auth0/handlers/userAttributeProfiles.ts

@@ -209,14 +209,27 @@ export default class UserAttributeProfilesHandler extends DefaultAPIHandler {
   async getType() {
     if (this.existing) return this.existing;
 
-    this.existing = await paginate<UserAttributeProfile>(this.client.userAttributeProfiles.getAll, {
-      checkpoint: true,
-      include_totals: true,
-      is_global: false,
-      take: 10,
-    });
+    try {
+      this.existing = await paginate<UserAttributeProfile>(this.client.userAttributeProfiles.getAll, {
+        checkpoint: true,
+        include_totals: true,
+        is_global: false,
+        take: 10,
+      });
 
-    return this.existing;
+      return this.existing;
+    } catch (err) {
+      if (err.statusCode === 404 || err.statusCode === 501) {
+        return null;
+      }
+      if (err.statusCode === 403) {
+        log.debug(
+          'User Attribute Profile with Self-Service SSO is not enabled for this tenant. Please verify `scope` or contact Auth0 support to enable this feature.'
+        );
+        return null;
+      }
+      throw err;
+    }
   }
 
   @order('50')

test/tools/auth0/handlers/userAttributeProfiles.tests.js

@@ -267,5 +267,18 @@ describe('#userAttributeProfiles handler', () => {
 
       await stageFn.apply(handler, [{ userAttributeProfiles: [] }]);
     });
+
+    it('should handle 403 error when not enabled on tenant', async () => {
+      const auth0 = {
+        userAttributeProfiles: {
+          getAll: () => Promise.reject(Object.assign(new Error('Forbidden'), { statusCode: 403 })),
+        },
+      };
+
+      const handler = new userAttributeProfiles.default({ client: pageClient(auth0), config });
+
+      const data = await handler.getType();
+      expect(data).to.equal(null);
+    });
   });
 });