We have the following setup:
- user registers on auth0 lock, with aditional user fields (country, city, etc).
- when they login to our site, all the user_metadata is copied in the users profile on our website
- the metadata is never used again
We would like to remove that user_metadata once it is coppied.
From my understanding, that is possible using the management api( which i manage to do).
But that api has full management access (i know, it is in the name ).
Is there another way to remove the user_metadata without using management api with full rights?