Hello, i have a question regarding the scope, every time the user logins , they have to click accept to login, is there a way to exclude this step ( maybe only once is ok, but each time , kind of gets annoying for the user)
Firstly lets make sure that you are not passing the prompt=consent, since:
When redirecting to the /authorize endpoint, including the prompt=consent parameter will force users to provide consent, even if they have an existing user grant.
Otherwise, in order to skip user consent for every login, your application needs to be registered as a First Party App.
Note that this option only allows verifiable first-party applications to skip consent at the moment. As localhost is never a verifiable first-party (because any malicious application may run on localhost for a user), Auth0 will always display the consent dialog for applications running on localhost regardless of whether they are marked as first-party applications.