I have a collection of APIs that follows a micro-service architecture approach. Some of my client applications (front-end using React) needs to interact with multiple of these APIs, and i hoped i could use a single AccessToken to authenticate with them all. I am using the new RBAC module in Auth0 to give users roles and permissions.
I have followed the steps in this article, but i cant figure out how it all ties together : https://auth0.com/docs/api-auth/tutorials/represent-multiple-apis.
Lets say i have two APIs, that each has their set of permissions:
I then create a new “Logical-API” using the Auth0 Dashboard, and use this APIs identifier as audience when i authenticate the client application with Auth0. But how do i tie this “Logical-API” to API A and API B?
Any help/tips on how to achieve this would be greatly appreciated