Hi @rubenlifesaver,
Welcome to the Auth0 Community!
It seems that the audience query parameter might not have been included in the login request even though you specified it in the .env file. Could you please check your network settings to ensure that the login request includes the audience query parameter?
It should look something like the following:
https://devtest321.us.auth0.com/authorize?
response_type=code&
code_challenge={codeChallenge}&
code_challenge_method=S256&
client_id=in1QbY7JPM4aXOBacTQJKcBl6K51eLUp&
redirect_uri={yourCallbackUrl}&
scope=SCOPE&
audience={apiAudience}&
state={state}
(Reference: Call Your API Using the Authorization Code Flow with PKCE)
You should be able to set the Default Audience for your tenant by going to your tenant settings, including the audience identifier as the default audience, and saving your changes.
Please refer to our Tenant Settings documentation.
To get the ID token, you can specify the openid scope in the login request. Then, after exchanging the authorization code for the tokens, you should get both the access and ID tokens. I have ensured that your API settings on Auth0 are correctly configured, and there are no extra steps you need to take here.
Thanks,
Rueben