Matt Raible
This happens because Auth Code Flow (with PKCE) is now the default. When this post was written, Implicit Flow was the default. You can fix it my adding pcke: true to your initialization code.
OktaAuthModule.initAuth({
issuer: ‘https://{yourOktaDomain}/oauth2/default’,
redirectUri: ‘http://localhost:8080/implicit/callback’,
clientId: ‘{yourClientId}’,
pkce: true
})
To fix this problem without changing your code, edit your Okta app and select Implicit as an allowed grant type. To learn more about why you shouldn’t use implicit flow, see Is the OAuth 2.0 Implicit Flow Dead?