I’m writing a custom OIDC integration. For the last step, where Okta exchanges a code for a token, I’m getting the following error after responding from /token endpoint: com.saasure.platform.services.idp.exception.IdpAuthenticationException: Nonce is invalid in id_token These are the claims in my …

Nonce is invalid in id_token

Mugen April 11, 2024, 7:16am 2

OK I now understand that Okta expects the nonce to match the one given initially in the /auth endpoint.

2 Likes