Hi Prashant,
In general yes, when the users log in via auth0, they receive the OIDC token, which then the client uses to authenticate. When you are calling APIs, I assume you mean from different client, where the OIDC login didn't happen, so you will need the bearer token.