The login_required error is sent when the user hasn’t already logged in (or due to browser issues like cookies being blocked). You may also find the discussion in this thread interesting: Working with auth0-spa-js locally
For the consent screen issue with localhost, you can add a non-localhost domain in /etc/hosts as described here: User Consent and Third-Party Applications