I have nestjs app that request an access token. The token seems not to update it scopes when changing it.
I have added update:profile and delete:users, both of those scopes to not appear when requesting a access token.
When testing the api in Auth0 dashboard, the token looks correct but what ever I get in my nestjs app is wrong or old.
Using postman does work and it returns the correct scope when calling the endpoint. Also using the Auth0 Management API audience works perfectly fine. Why can’t I use my custom api??
Any ideas why that is?