Okay there are a few different strategies here.
If you want to add roles to a token as a custom claim, you can do that in a rule.
https://auth0.com/docs/scopes/current/sample-use-cases#add-custom-claims-to-a-token
Example rule:
function (user, context, callback) {
const namespace = 'https://myapp.example.com/';
context.idToken[namespace + 'roles'] = context.authorization.roles;
callback(null, user, context);
}
This topic also has some different strategies we could discuss if the custom claims solutions isn’t right for you.
Let me know if you have any questions.
Thanks,
Dan