Hi James,
Thanks for the response.
I’m sure the problem is not with auth0 token, but rather the way how .NET 3.0 decode the token. I’m using Postman to test my API. No browser is involved.
Here is the steps to reproduce this problem:
-
Download the sample code from Auth0 quick start for my project. (which is based on .net core 2.0).
-
Test the project as is to make sure it works fine. Using Postman to test private API route with a valid Auth0 token: http://localhost:3010/api/private. Working as expected.
-
Migrated the project to .net core 3.0 (followed the migration steps given by Microsoft : Migrate from ASP.NET Core 2.2 to 3.0 | Microsoft Learn). After the migration, re-test the API call. The public route works fine. Getting 401 error on private call. The token is no longer decoded correctly.
Basically we need a new quick start project which works for .Net 3.0. Seems Microsoft is pushing to move to 3.0. The end support to v2.2 will be the end of Dec.
Thanks again.