I am setting up to use an SMS Code Passwordless Login from an Angular SPA Application Client (created in the dashboard, so by default first party - and I’ve confirmed this via the Management API). When I enter the SMS code for a new user connection and make the call to:
The customer I am building the application for is adamant they DO NOT want ANY prompts to their users about Authorizing anything as it will only confuse their users and scare them away from using our product. I have read the documentation and am unsure why it is prompting for this in the first place. The client is a First Party client, there are no APIs involved (unless the Auth0 Management API is involved, but I’ve set “Allow Skipping User Consent” to true for all our APIs), so I’m unsure how to proceed to ensure no prompts come up.
Thanks - I found my issue. There was a localhost entry in the callbacks in the tenant. I wasn’t aware if a localhost entry was setup it would always prompt - I assumed if you didn’t use the localhost entry it wouldn’t prompt, but that link you sent showed me otherwise.