My API permissions were initially defined as:
- “use:api1”
In my React App, when I authenticate my users and handle sign ups, I’ve got the following.
<Auth0Provider
domain={process.env.AUTH0_DOMAIN!}
clientId={process.env.AUTH0_CLIENT_ID!}
authorizationParams={{
redirect_uri: window.location.origin,
audience: process.env.AUTH0_AUDIENCE!,
scope: 'profile email use:api1'
}}>{children}</Auth0Provider>
and this works well. Now when I am expanding my permission set, the scope shall be: profile email use:api1 use:api2. Naturally, every user will now see “Consent required” error, and that’s ok.
Following up on this post: what is not clear is how to request or synchronise the new permissions without deleting the user (obviously). You refer to this page where is a raw request example provided, but I want to know what is the best practice to achieve this window in the React App using Auth0Provider.
When I log out my user, I would expect that auth0 should pick up the change in the required scope automatically (basing on Auth0Provider props) and request new permissions (consent) upon the next sign-in attempt but it does not happen. Struggle to understand why.
Could you please help with the solution?