I’m connecting with github and I want to obtain IDP tokens from management api.
Using this guide Auth0 Python API SDK Quickstarts: Add Authorization to a Flask API application the process goes as follow:
- User logins
- Use access_token to fetch / on backend
- Validate token on backend using public key and referencing custom api
Validation works for M2M tokens but not for SPA tokens.
How do I validate SPA tokens ?