With the dashboard and reports provided by Okta we’ve seen that there are many error reported of this type: “Failed to evaluate claim for OAuth2 token for user ******* with client ****** and authorization server ***** due to reason: user_claim_evaluation_failure”
How can we investigate to resolve those issues?
In which part of the login flow this errors could be generated and for what reason?
The claim evaluation failure usually occurs from the authorization server not being able to retrieve a specific value in a claim.
Based on the screenshot provided, can you please check that the apps that are using the custom authorization server all have “name”, “userName” and “email” in the application profile available under Directory >> Profile Editor >> your application >> Profile >> Variable Name column?
If they do and you are not able to find the culprit, please feel free to open a support ticket with us at developers@okta.com and one of our Developer Support engineers will further assist you.