Hi @nicolas_sabena! Thanks for reply. Can you clarify a little bit more?
Am I right that state is being generated on the moment of login method call?
Eg
// This code invoked on a page load
const webAuth = new auth0.WebAuth({
domain,
clientID,
responseType: 'id_token',
redirectUri
});
// This code is invoked per user clicks "login" somewhere on a form
// Does state being generated here?
webAuth.login(... some credentials);