Hello,
It looks like in the Swagger setup you are using the Org Authorization server
https://my.okta.com/oauth2/v1/authorize
https://my.okta.com/oauth2/v1/token
In the login widget you are using a custom authorization server ‘default’ (note default is a preconfigured custom authorization server)
https://my.okta.com/oauth2/default
With the Org authorization server you are not able to create custom scopes/claims which is why all you see is the openid scope even though you also request ‘test’. The public keys used to sign the access token from the Org Authorization server are not made public which is why you get,
"The signature key was not found"
Try changing the Swagger config to
https://my.okta.com/oauth2/default/v1/authorize
https://my.okta.com/oauth2/default/v1/token
Note in order for the ‘test’ to work you need to configure the default authorization server for that scope. More information about Org and Custom Authorization Servers can be found here. Creating custom scopes/claims.