Thanks for your response. Let me clarify some details.
I’m using Auth0 hosted login page. So technically I’m not making request, but going to the my Auth0 domain and passing all the params to query string like
As you can see, I’m passing scopes, that I want to get in the query param. Then I’m redirecting to my callback url and getting response in the hash params. Like this
JS library just parse it and provide me with ready to use result.
scope:"openid profile email"
And scopes are different from those I requested.
In the dashboard I’ve created new API and added read:test scope there. And I’m a bit confused now. I’ve been doublechecking all the setting in both app and dashboard and according to the docs it has to work. But it doesn’t. So I hope that somebody could show me the right direction. Thanks.