Auth0 Home Blog Docs

Using access token for own API as well as management API


Not sure if I’m asking this right, but I’ve got a React SPA that gets authorized through the /authorize -> /callback flow. I have my own GraphQL endpoint that I want the SPA to access, so I include the API in the audience.

This results in an access token with both my GraphQL API endpoint and the auth0/userinfo endpoint in the JWT’s audience.

I could access the userinfo through the /userinfo endpoint, but the SPA template I’m using is already set up to get information through the management APIs /api/v2/users.

Since the access token doesn’t include this endpoint in the audience, I can’t use it to access the management APIs.

Is there a way to include that audience in the access token?