I did it this way reference documentation, but this is the access_token against a client in auth0 and not a user.
I wanted to authorize API with user access_token so that I can access claims of user in my API.
With access_token of client I cannot access Identity Claims of logged in user in my API.