I’ve been trying to use the Okta.AspNetCore nuget package and the nifty extensions
AddOktaMvc. But for some reason they do not work with our Okta authorization server setup. As far as I can tell, we do not need to use
AuthorizationServerId, it should be default.
Both of the extension methods looks for the
openid-configuration at the following address:
Problem is, in our okta auth server that configuration is placed here:
The one that the extension method tries to reach gives a 401 response.
Using the default .net
AddOpenIdConnect seems to work. For the resource server using
AddJwtBearer and specifying the
MetadataAddress in the options also seems to work.
So I’m curious what is going on with the okta extensions and why I can’t get them to get the configuration.