Auth0 Home Blog Docs

What gets sent to the callbackUrl from the auth0LockPasswordless component?

I’m trying to implement a passwordless sms auth flow like follows:

User authenticates via auth0-lock -> user gets authenticated and recorded in the session (via our backend) -> user redirects

My auth0 lock component works and redirects properly, but I’m not sure what gets sent in the request that I can use in my middleware to authenticate the user in my backend. Essentially I need a code from auth0 that I can exchange for a JWT. How do I access that code?

When I print the GET params of the request, it’s empty, so it doesn’t seem to populate anything in the get params.