Unfortunately, when testing, I’m receiving the following error:
. {“error”:“invalid_client”,“error_description”:“The client secret supplied for a confidential client is invalid.”}
The error would imply that my client_secret is incorrect. However, I copied the client id and secret from the application. In addition, I encoded the client ID and client secret appropriately ( echo client_id:client_secret | base64 ). Here’s the curl statement that I’m using for testing:
Make sure you’re using the right /token endpoint, the right encoding, and also try with only custom_scope first.
If you can post screenshots of your application and auth server, that might give some clues.