Incorrect token issuer in JWT

I’m following this guide, and nearly got everything working, Build Secure Node Authentication with Passport.js and OpenID Connect | Okta Developer

When validating the token, I get an error:

id token not issued by correct OpenID provider - expected: | from: The spec is here: // Draft: OpenID Connect Basic Client Implementer's Guide 1.0 - draft 40 - check 1.

using the setting the issuer to results in a 401 error when the library tries to get the profile info.

Is there something I am missing?

Try setting the issuer to