I’ve been trying to understand managing users in Auth0 with roles, and scoped access to my API.
I’m implementing a Laravel API, and have all the Auth0 set up working and proper, but I’ve hit the roadblock of how do I actually do this.
I’ve created scopes on my API, set up an endpoint to accept only a particular scope, but now have no idea how to manage user roles and permitted scopes via Auth0.
Everything points to rules, but are they useless to me if I’m using a PHP backend instead of JS? Do I implement them in some other way?
I’m really confused, so any help in demystifying how I managed users and their scopes would be greatly appreciated!