Hey there @joeroot.pk80 , thanks for posting!
1 step: Please toggle the RBAC button in the API settings where you want to build the role-based access.
2nd step: In your frontend, when specifying the authorize request, please add the audience parameter (which takes the value of this API identifier from your Auth0 dashboard). This way you receive the jwt-format (instead of an opaque token) access token with the relevant for the user roles’ permissions.
Access token verification happens on the server side. Feel free to use our quickstarts to try it out.
FGA is on a separate platform (not the auth0 dashboard). There are docs on this feature, like this one: https://docs.fga.dev/
We also created a separate category for the FGA in this community. Please feel free to search more there or ask specific questions! (FGA’s has been only recently generally available.)
Hope this gives you a good starting point. Have a good weekend!