Invalid_client error

mnibras · April 4, 2023, 7:03am

I have created an Okta application of type API Services and created a user from Okta directory
I want to get the token for the created user

Below is my curl request to get the token

curl --request POST \
  --url 'https://dev-XXXXXX.okta.com/oauth2/default/v1/token' \
  --header 'content-type: application/x-www-form-urlencoded' \
  --data grant_type=password \
  --data scope='openid' \
  --data username=<user_email> \
  --data password=<Base64_encoded_password> \
  --data client_id=<client_id>

Response

{
    "error": "invalid_client",
    "error_description": "Client authentication failed. Either the client or the client credentials are invalid."
}

I’m sure that client-id and user credentials are correct.

Can anyone help me to resolve this?

dawoudt · April 5, 2023, 6:03am

Hi @mnibras, checkout this example - Implement authorization by grant type | Okta Developer

It seems you need to pass you need to pass client credentials as basic auth (base 64 encoded). Your password will be plain text.


curl --request POST \
  --url https://${yourOktaDomain}/oauth2/default/v1/token \
  --header 'accept: application/json' \
  --header 'authorization: Basic MG9hYn...' \
  --header 'content-type: application/x-www-form-urlencoded' \
  --data 'grant_type=password&username=testuser1%40example.com&password=%7CmCovrlnU9oZU4qWGrhQSM%3Dyd&scope=openid'

Post		Replies	Views
Password grant type gives invalid client error Questions api	3	7454	June 5, 2020
Getting invalid_client when trying to get access token using token API OAuth/OIDC	8	7097	March 7, 2024
Following client_credentials flow docs but getting 'Invalid value for client_id' Questions	4	7067	June 10, 2022
Unauthorized client error using /token and grant_type of client_credentials OAuth/OIDC	4	4237	November 30, 2022
/token endpoint is returning "invalid_client: No client credentials found" Questions php	2	7758	March 5, 2019

Invalid_client error

Related topics