Client authentication failed. Either the client or the client credentials are invalid

swati.jain4 · October 22, 2025, 10:10am

I have a angular + Java spring boot application, i have configured okta login for the application, and its working fine with local setup, now when moving it to server, i am getting okta login page, and able to complete 2FA as well, but it fails at the /oauth2/default/v1/token api, getting this error, “Client authentication failed. Either the client or the client credentials are invalid.” not sure what might be the issue and how to debug.

andrea · October 22, 2025, 4:50pm

What type of application did you create within Okta and which part of your implementation is the one making that /oauth2/default/v1/token request, the Angular app or the Java app?

swati.jain4 · October 24, 2025, 7:46am

It is an angular frontend and backend (Spring Boot with security implementation) application, upon further investigating, the curl request for /token api is working when "Authorization: Basic clientId:clientSecret” is passed along, where to configure the same in angular, currently i followed GitHub - okta/okta-angular: Angular SDK for Okta's OIDC flow this implementation with a CustomCallbackComponent, not sure how to pass the Authorization explicitly.

andrea · October 24, 2025, 4:41pm

Our Angular SDK is only designed to work with SPAs that use PKCE auth, and not a client that uses client_secret_basic client authentication.

If you create a SPA within Okta and use its ID in your configuration, does it work?

swati.jain4 · October 24, 2025, 6:06pm

Yes, it works when creating a app in Okta as SPA, but when creating a web application in Okta and using its configuration in application I am getting this error, “Client authentication failed. Either the client or the client credentials are invalid” .

Could you please suggest how to configure spring boot security based application , with Angular frontend login page with okta login (Web application based) if Angular SDK does not support Web application.

swati.jain4 · October 27, 2025, 11:34am

Please suggest how to configure spring boot security based application , with Angular frontend login page with okta login (Web application based)

andrea · October 27, 2025, 3:19pm

If you want to have the Angular SDK start Authorization Code flow for a Web app with a Client Secret, you will want ensure that pkce is set to false and responseType is set to code in your OktaAuth config, as mentioned in our docs here: GitHub - okta/okta-auth-js: The official js wrapper around Okta's auth API

Post		Replies	Views
Getting invalid_token on okta spring boot 2 and Angular 7 Questions	9	16141	April 15, 2020
Angular & Spring can't comunicate using Okta Questions	5	3563	January 30, 2020
Invalid_client - Client authentication failed SPA Questions	3	21405	January 3, 2024
POST https://dev-251753.okta.com/oauth2/default/v1/token -> AuthApiError Questions	3	6322	September 30, 2021
Basic CRUD App with Angular 7.0 and Spring Boot 2.1: Invalid value for 'client_id' parameter Questions	2	4015	April 14, 2019

Client authentication failed. Either the client or the client credentials are invalid

Related topics