I have mostly figured it out. I had my settings wrong. I started Auth0 with a slightly different auth flow. You used to have client id and secrets and all that stuff. I remember the email a while back about this changing. Everything is working accept my api (.net core) is not sending ‘access-control-allow-orgin’ headers on the actual get requests (is on the optionis call, weird). The bearer token (from ‘access_token’) now looks correct when using jwt.io(https:jwt.io). My other problem is out of the scope of Auth0 so I will accept your answer. Thanks a bunch Ryan!
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Your Examples "Angular 2+ Login" and "Angular 2+ Calling an API" Clarification | 4 | 3842 | July 25, 2019 | |
| Passing 1 audience to get access_token request, but returned access_token has 2 audience | 6 | 2781 | April 12, 2022 | |
| JWT returned to callback has incorrect aud (audience) | 6 | 12799 | March 2, 2018 | |
| Invalid access_token | 3 | 5446 | March 28, 2020 | |
| "invalid credentials" calling userinfo | 5 | 4997 | June 20, 2020 |