Hello @Xepobopa welcome to the community!
A Management API Access Token () obtained by the SPA is limited in the scopes it can have - Instead, you’ll need to utilize a backend of sorts to get and use a properly scoped access token. The following article outlines this flow:
Alternatively (and easiest route), you can add a user’s roles as a claim to an Access Token and get them that way:
https://community.auth0.com/t/how-to-add-roles-and-permissions-to-the-id-token-using-actions/84506
Hope this helps!