Hi, I’ve been trying to login with a set of scopes via lock.
this.lock = new Auth0Lock(clientId, domain, {
oidcConformant: true,
audience: 'myApiAudienceValue',
auth: {
redirect: true,
responseType: "token id_token",
params: {
scope: 'read:users write:posts',
}
},
loginAfterSignUp: false,
container: 'lock-container',
....
I was able to login, but it always return scope: null
I tried to log my request via the postLogin:action, the audience
and scope
value I’m sending was not there.
-
I’ve made sure to add the
read:users
&write:posts
into my API permission list -
I’ve made sure that the audience is the API identifier
-
I’m using the app id that’s authorized to the API
-
The scope take effect if I omit the
audience
option and set scope to one or more ofopenid
,profile
oremail
am I missing something?