Hi, we ran into issues with getting tokens on browsers that block 3rd party cookies. We solved the issue for getting JWTs by setting useRefreshToken=true
when creating the Auth0 client, enabling refresh tokens and rotation in the management console settings, and allowing offline access for the custom API that we were using as the audience for that JWT.
However, we still cannot seem to get the proprietary opaque token (when audience is not specified) without 3rd party cookies. Any tips? Thanks.