Presently users login with an ACCESS_TOKEN from the /oauth/token endpoint. I want to offer users a custom experience whereby they will have the option to have MFA via OTP if they want. However, if I enable MFA in Auth0, the /oauth/token endpoint starts returning MFA_TOKENS instead of ACCESS_TOKENS, so how can I still get ACCESS_TOKENS for those users not using MFA ?
1 Like