I tired to mix the auth0-react and the auth0-spa-js library in a react application.
the reason is that on the one side I like the smooth syntax to export authenticated views with “withAuthenticationRequired” but on the other side I have to get access tokens outside of hooks.
It works fine on desktops but on ipad and iphone i got issues as soon as the cross site protections are activated ( which is on by default).
The error is LOGIN_REQUIRED.
My Assumption was that all libaries will use same states( cookies) and therefore would be ineropable.
So is this a supported scenario or should it be avoided?