We have an OpenID Connect app that sets the prompt=none parameter in login requests. When used with a production account, and the user is not already logged in to Okta, Okta redirects to the redirect_uri with the error login_required, and then we’ll process the error and resubmit the request using the prompt=login parameter.
However, when the same app is used in a Dev account, Okta doesn’t redirect to the redirect_uri. It just throws a 400 error message with the code login_required.
Is there a reason why the behavior would be different in production and dev accounts?