If you need to send custom parameters to the Authorization Server, make sure to use the original parameter name.
The audience that was used in the authentication request
true, ignores the cache and always sends a
request to Auth0.
There's no actual redirect when getting a token silently,
but, according to the spec, a
redirect_uri param is required.
Auth0 uses this parameter to validate that the current
origin when sending the response.
It must be whitelisted in the "Allowed Web Origins" in your
Auth0 Application's settings.
The scope that was used in the authentication request