Hi @bconrad ,
Sorry about the delay.
I did more research on this topic. There are two options for assigning roles/scopes to users.
For the Core RBAC feature, we create the roles and assign them to users on the Auth0 dashboard → User Management → Users/Roles. And we can see the details in the user settings.
The Authentication Extension is a legacy implementation and will be replaced by the Core RBAC feature eventually. With the Authorization Extension, we store authorization data like groups, roles, or permissions in the outgoing token issued by Auth0. So the groups/roles are not visible in the user settings regardless of whether users are linked or not.
Is there any reason you want to use the Authentication extension instead of the Core RBAC feature?