@jmangelo Thanks for the reply. I have changed the http request to https. You were right that it wasn’t the root cause. I don’t believe that I’m using google connection with developer keys.
I have generated a HAR file and redacted sensitive info. Let me know if there’s anything I can do to provide more context.
auth0-social-redirect.har (1.4 MB)
In the HAR file at the unauthorized 401 error I am seeing the following, which doesn’t look quite right. 
But I’m not sure what to expect for a “scope” value either.
{
"name": "scope",
"value": "email%20profile%20https://www.googleapis.com/auth/userinfo.email%20https://www.googleapis.com/auth/userinfo.profile%20openid"
},