400 Bad Request salesforce external idp

YairTav · August 21, 2020, 2:32am

Hi everyone, I configured Salesforce as an external IdP for my okta Authentication, but after receiving the token and the state from salesforce the okta callback shows a 400 bad request with this error: Your request resulted in an error. The UserInfo response is invalid. Technical details: Identity Provider: OIDC, Error Code: access_denied

but if I look at the URL there is a token and a stat u suppose from salesforce, could anyone help on this? I could actually pay a personal mentorship or something.

this is how the url looks like: https://{mycustomdomain.com}/oauth2/v1/authorize/callback?code={code i guees from SF}%3D%3D&state={state token}

phi1ipp · August 22, 2020, 4:01am

I think, Okta is trying to invoke /userinfo on salesforce and failing to do that. Is it a requirement, to use OIDC for your integration? I believe SAML may work as an alternative

YairTav · August 25, 2020, 1:43am

Thanks! and no, it’s not a requirement so I guess I’ll try out the SAML protocol, still is strange why Salesforce doesn’t allow me to get the userInfo. anyway thank you!

wynnytsky · August 25, 2020, 4:53pm

when postman was doing that I resolved it by changing my auth and access token URLs from this
…/oauth2/v1/authorize…
to this
…/oauth2/default/v1/authorize…

maybe see if you can sell SAP to use diff URLs

Post		Replies	Views
External IDP (OIDC) in Okta - OAuth/OIDC	2	1511	February 16, 2024
400 bad request for /authorize endpoint OAuth/OIDC api , python	2	6746	February 15, 2024
Using my own identity provider, it fails to sign in but then tries to connect to user info and throws an invalid user info OAuth/OIDC idp	5	775	July 6, 2024
Idp- Testing the authorization URL as an HTML link OAuth/OIDC	1	1417	February 16, 2024
400 Bad Request calling Authorize Questions	2	3407	February 10, 2024

400 Bad Request salesforce external idp

Related topics