I am integrating Auth0 with my backend application as an authorisation service. I have created an access token via endpoint oauth/token with client credentials and user’s email and password. Access token generated is verified by jwt.io with my custom API’s secret key. I am using HS256 and a custom api with identifier http://localhost:4000/. Also, guardian as the token decoding library which returns invalid token. My Guardian config:
config :my_app, MyApp.Guardian, allowed_algos: "HS256"], error_handler: Authentication.ErrorHandler, issuer: AUTH0_DOMAIN, verify_issuer: false, secret_key: AUTH0_API_KEY
For token generation, I am using http://localhost:4000/ as audience and AUTH0_DOMAIN as issuer, grant_type: password
I have spent so much time debugging My guardian implementation and testing with new APIs and Clients but couldn’t get it to work. What am I doing wrong?
Thank you so much for the help in advance. 