Got Error message login with admin User :Invalid User

Hi I am new to the Okta, I’m trying to do Okta login with OIDC+ Oauth2.0+Spring boot
Javascript code below shown here and server code not added below
var loginForm = {

    initlogin: function() {
        var config = {};

config.baseUrl = /[[${oktaBaseUrl}]]/ ‘’;
config.clientId = /[[${oktaClientId}]]/ ‘0oa5r4fjjf5id9Q9k5d7’;
config.redirectUri = /[[${#httpServletRequest.scheme + ‘://’ + #httpServletRequest.serverName + ‘:’+#httpServletRequest.serverPort+#httpServletRequest.contextPath} + ${redirectUri}]]/ ‘http://localhost:8080’;
config.logo = ‘/images/mercury-logo.png’;
config.authParams = {
issuer: /[[${issuerUri}]]/ ‘’,
responseType: ‘code’,
state: /[[${state}]]/ ‘{state}’ || false,
scopes: /[[${scopes}]]/ [“openid”,“email”],
display: ‘page’

var baseUrl = ‘’;
//var oktaSignIn = new OktaSignIn({baseUrl: baseUrl});

new OktaSignIn(config).renderEl(
{ el: ‘#okta-login-container’ },
function (res) {
if (res.status === ‘SUCCESS’) {
console.log(‘User %s succesfully authenticated %o’, res.user.profile.login, res.user);

and I added server code also
I got the widget but I am unable to login to Okta login page
Please help me to resolve my issue.

What’s the exact error you’re getting back and do you see it rendered in the widget or in the browser console/network tab?

Hi @andrea ,
Thank you for response, I didn’t any error msg in my eclipse console and browser console few exceptions
I add Widget shown below and server code below and browser side console error

@GetMapping(value = “/okta-custom-login”)
public ModelAndView login(@RequestParam(“state”) String state) throws MalformedURLException {

    String issuer = oktaOAuth2Properties.getIssuer();
    // the widget needs the base url, just grab the root of the issuer
    String orgUrl = new URL(new URL(issuer), "/").toString();

    ModelAndView mav = new ModelAndView("login");
    mav.addObject(STATE, state);
    mav.addObject(SCOPES, oktaOAuth2Properties.getScopes());
    mav.addObject(OKTA_BASE_URL, orgUrl);
    mav.addObject(OKTA_CLIENT_ID, oktaOAuth2Properties.getClientId());
    // from ClientRegistration.redirectUriTemplate, if the template is change you must update this
    mav.addObject(REDIRECT_URI, "http://localhost:8080");
    mav.addObject(ISSUER_URI, issuer);
    return mav;


static class OAuth2SecurityConfigurerAdapter extends WebSecurityConfigurerAdapter {

    protected void configure(HttpSecurity http) throws Exception {
                .antMatchers(HttpMethod.GET,"/okta-custom-login", "/css/okta.css").permitAll()

browser console

Hi @andrea ,

Browser Console

Network tab Response below screen shot

In Eclipse console there is no error’s

we are follw the redirect uri is /authorization-code/callback is that correct? or wrong?

A 401 from /authn implies that the user creds are invalid.

Can you log the user into Okta directly with the credentials you’re providing? Is the user in question a local Okta user, or are they coming in from an external identity provider (i.e. a Federated or Social user)?