Hi @bill.rebey
Thank you for posting your question on the Auth0 Community!
Please take a look at this community post. As mentioned in there, when you are making a request to your /authorize endpoint, you might not be passing in audience parameter and you are receiving an opaque token which cannot be validated.
You can try to decode the current access token that your code receives on jwt.io to see if it is by any chance malformed.
Alternatively, as mentioned in our documentation about Validating JTWs, you can attempt to validate the token by using Auth0’s Middleware or using a 3rd party library from jwt.io.
If you have any other question on the matter, feel free to leave a reply!
Kind Regards,
Nik