I am migrating roles to actions and I found one issue when it comes to updating users roles in an Login / Post login action.
I make use the permissions array of the access token in my application, so I activated RBAC and the option to add permissions in the access token.
In the Login / Post login action, I assign a role to the user if the user has no assigned roles yet. I use the Auth0 Management API to do this (ManagementClient - Documentation).
After the action has successfully run and the user logged in, the permissions array is empty in the access token. If this user does a relog, everything works as expected.
With rules, the permissions were also correctly filled after the first login.
Can you help me with this issue?