Authorization code flow- id_token added unnecessarily in request url

Anuradha · December 20, 2022, 5:41am

I am trying to implement authorization_code flow in my mvc application . In app settings I have selected Grant type- Authorization_code and client credentials … Request type - Code. still in request url request type is passed as Code&id_token internally … which lead to an [unsupported request type] exception.

Startup.cs
app.UseOktaMvc(new OktaMvcOptions()
{
OktaDomain = ConfigurationManager.AppSettings[“okta:OktaDomain”],
ClientId = ConfigurationManager.AppSettings[“okta:ClientId”],
ClientSecret = ConfigurationManager.AppSettings[“okta:ClientSecret”],
AuthorizationServerId = ConfigurationManager.AppSettings[“okta:AuthorizationServerId”],
RedirectUri = ConfigurationManager.AppSettings[“okta:RedirectUri”],
PostLogoutRedirectUri = ConfigurationManager.AppSettings[“okta:PostLogoutRedirectUri”],
GetClaimsFromUserInfoEndpoint = true,
Scope = new List { “openid”, “profile” },

});

Please help

erik · December 20, 2022, 9:50pm

Hello @Anuradha,

Is your app webforms?
If not is it ASP.NET, or Core?

Can provide the version of the Okta SDK you are using.

Thank You,

Anuradha · December 21, 2022, 7:05am

Okta.AspNet 1.1.4
Okta.AspNet.Abstractions 3.0.1.0
Owin 1.0.0
Microsoft.Owin 4.0.0
Microsoft.Owin.Cors 3.0.0
Microsoft.Owin.Security.OpenIdConnect 4.0.0
Microsoft.Owin.Security.OAuth 4.0.0

Anuradha · December 21, 2022, 7:07am

My website is in MVC .
Target Framework - .Net 4.6

Anuradha · December 21, 2022, 9:03am

I updated Okta.AspNet to 1.8.0 …
receiving below error now…
Error : { IDX21323: RequireNonce is ‘True’. OpenIdConnectProtocolValidationContext.Nonce was null, OpenIdConnectProtocol.ValidatedIdToken.Payload.Nonce was not null. The nonce cannot be validated. If you don’t need to check the nonce, set OpenIdConnectProtocolValidator.RequireNonce to ‘false’. Note if a ‘nonce’ is found it will be evaluated. }
ErrorInfo : { at Microsoft.IdentityModel.Protocols.OpenIdConnect.OpenIdConnectProtocolValidator.ValidateNonce(OpenIdConnectProtocolValidationContext validationContext) at

andrea · December 21, 2022, 6:20pm

Nonce is null? Sounds like your app isn’t able to validate the nonce. Are you ensuring that the .NET app is the one triggering the /authorize request? Does it work if you disable nonce validation as mentioned in the error message?

Anuradha · December 27, 2022, 5:49am

Hey @andrea Thank you for replying… I made my localhost https and then error was removed.

system · February 12, 2024, 10:41pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.

Post		Replies	Views
Okta + MVC web application + Authorization grant flow Questions	18	6524	January 24, 2024
OAuthError: The response type is not supported by the authorization server. Configured response types: [id_token, token] OAuth/OIDC	7	31346	July 21, 2020
Native Application Authentication Flow Questions	2	2973	February 10, 2024
Error while accessing the authorize roue OAuth/OIDC api	5	4596	February 26, 2020
Trouble calling /token Questions	2	4800	June 6, 2020

Authorization code flow- id_token added unnecessarily in request url

Related topics