We’ve been using Postman to get implicit-grant access tokens for Auth0 with our custom domain url up until today, when we get the following error “You should not be hitting this endpoint”.
The endpoint we’re hitting is /authorize?audience=
This is what Postman shows:
We assume this is somehow related to the newly deprecated APIs.
New information: We found that Postman will still be able to access /authorize and get us a token via Google Oauth (which is what we were doing previously via the login page) if we add these parameters to /authorize: &connection=google-oauth2&prompt=select_account
