I have a problem with newly created auth0 app. I have created fresh single page app. It is configured to use RS256 signing algorythm. For some reason though despite the settings access tokens keep beeing signed with HS256. Intrestingly enough id tokens are signed with RS256 as expected. Any advices?
If I understand correctly: your ID token is a RS256 signed token, but your access token is a HS256 token, correct?
The ID token algorithm is in the advanced settings of your app.
The access token algorithm is in the settings of your API (which you specified the audience for to get the access token). Check that, it is set to HS256.