Hi there, I have the following use-case: I have a Nuxt website where my users should log in to via Auth0 OAuth. I want to use their Access Token to communicate with an API which is hosted on a different domain. However, if I use the application type “Single Page Application” in Auth0 I only get an …

Hey there @cache welcome to the community! [image] cache: Edit: So I found out, that I can get a non-opaque JWT when specifying the audience int he authorization request. So far so good, but I don’t get a refresh token anymore? How could I refresh the access token without a refresh token? Aw…

Opaque JWT applicable for my use case?

Help

tyf August 15, 2024, 8:40pm 3

Hey there @cache welcome to the community!

Awesome, glad you were able to get this sorted You should definitely still be able to get refresh tokens in a SPA, and this is the recommended approach.

1 Like