This sample follows Auth0's OBO token exchange pattern: a browser app gets a user access token for the middle-tier API, the middle tier exchanges that token for a downstream token, and the downstream API validates the exchanged token.
Run On-Behalf-Of End To End
This sample follows Auth0's OBO token exchange pattern: a browser app gets a user access token for the middle-tier API, the middle tier exchanges that token for a downstream token, and the downstream API validates the exchanged token.
http://localhost:8788/api/middle-tier •
Downstream audience: http://localhost:8788/api/downstream