Hi, we noticed that Auth0 truncates the list of permissions in the generated token. In the token and on the management console, Auth0 displays max 100 permissions for each user.
Our hypothesis is that this bug is caused by how the token engine and ui fetch the set of permissions assigned to a user.
IIUC, there’s an Auth0 endpoint that can be used to paginate through the complete set of permissions. This endpoint is used by the UI and token engine. However from what we can see, the UI only displays the first page of permissions, even if more are available.
Could the token engine have the same issue with pagination?