By default, Auth0 generates Access Tokens, for API Authorization scenarios, in JSON If those scopes are authorized by the user, then the Access Token will you are not already logged in) and then you will get a consent screen, where you .