Mix of front-end auth and back-end usage of user profile information

I’m using auth0 client to authenticate. That works and I get the user access information. I would like to use that information (specifically email address) on the backend. I don’t think passing email from front to back is a good practice. What information in the front-end returned authenticated information should I pass to the backend to query via management APIs to get the email address? Is this the correct process? Is there a doc that explains using auth on front end then using user info on back end?

I think I got it. Pass access token to backend, decrypt on backend to get data I want.

1 Like

Glad you figured it out!

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.