Hello, I’m working on a rule used to add roles to the access token via management API. Before that I get the user roles (as I need them to check the existing roles) Here is what I’m doing: const ManagementClient = require('auth0@2.35.0').ManagementClient; const management = new Managemen…

Hi @kahina You need to do the client credentials grant in the rule, specifying your M2M client ID and secret, to get the access token with needed permissions. Then you need to cache that, so you are not getting a new token on every login. John

Forbidden: Insufficient scope, expected one of: read:users AND read:roles, OR read:role_members

Help

kahina June 9, 2022, 12:14pm 3

Hi @John,
Thanks a lot for your response, it works.

If another person met the same problem and couldn’t find a way, here is a topic that will help for sure

Kahina,

Topic		Replies	Views
Insufficient scope, expected any of: read:roles Help auth0 , scope	4	7927	April 22, 2022
Managment API does not have the correct scopes read:roles Help scopes , permissions , managment-api-v2	2	7639	September 2, 2019
Management API returns 403 when attempting to read users Help react , auth0-spa-js	3	11163	September 19, 2019
Management client api not working for roles and permission in Rules Help	2	3083	June 2, 2021
Scope doesnt assign to access token on React Help management-api , users	4	1327	July 12, 2023

Forbidden: Insufficient scope, expected one of: read:users AND read:roles, OR read:role_members

Related topics