Hello, I’m working on a rule used to add roles to the access token via management API. Before that I get the user roles (as I need them to check the existing roles) Here is what I’m doing: const ManagementClient = require('auth0@2.35.0').ManagementClient; const management = new Managemen…

Hi @kahina You need to do the client credentials grant in the rule, specifying your M2M client ID and secret, to get the access token with needed permissions. Then you need to cache that, so you are not getting a new token on every login. John

Forbidden: Insufficient scope, expected one of: read:users AND read:roles, OR read:role_members

Help

kahina June 9, 2022, 12:14pm 3

Hi @John,
Thanks a lot for your response, it works.

If another person met the same problem and couldn’t find a way, here is a topic that will help for sure

Kahina,

Topic		Replies	Views
Insufficient scope, expected any of: read:roles Help auth0 , scope	4	7842	April 22, 2022
Managment API does not have the correct scopes read:roles Help scopes , permissions , managment-api-v2	2	7633	September 2, 2019
Scope doesnt assign to access token on React Help management-api , users	4	1320	July 12, 2023
Modify Scopes of Access Token for Auth0 Management API Knowledge Articles	1	403	January 23, 2024
Need a better approach to handle roles, permissions and calling Management API from the frontend Help management-api , roles	0	480	November 22, 2023

Forbidden: Insufficient scope, expected one of: read:users AND read:roles, OR read:role_members

Related Topics