Okta vuejs implicit callback token truncated

hwhartman-chewy · January 12, 2021, 2:33pm

Hi,

My setup is a VueJs app using the okta vuejs sdk. I am using OIDC with implicit flow to get an id token.
I am using version 3.1.0 of the okta-vue sdk.

After a user successfully authenticates on the okta login screen, the automatic redirect to the route /login/callback only contains part of the id_token. When I decode the token, I can see that it has been truncated. The callback uri (plus the fragment) is always 8182 bytes long.

I’ve took a look at this and it appears to be my issue:

Unfortunately the suggested work around seems to require sending the response as a post which I don’t believe will work in the UI.

I did change the responseMode to ‘form_post’, which fails, but when I examine the post payload it contains id_token in its untruncated form.

Has anybody else encountered this or have other ideas for how to solve it?

Thanks
Hanns

erik · January 12, 2021, 5:45pm

Hello,
Can you attach the errors when it fails with the responseMode set to ‘form_post’?

If you could provide more details about your application. Are you using the widget hosted in the Vue app, or a custom login form?

Lijia · January 14, 2021, 1:37am

@hwhartman-chewy The maximum characters is 8000. So your call back return is larger than the max value. As you mentioned, it looks like you already get the id_token with its untruncated form? So what is the question now?

Post		Replies	Views
Okta-vue ImplicitCallback.vue Issue Questions	5	3703	November 25, 2019
Receiving a 414 Request-URI Too Long calling signOut in the okta-auth-js code OAuth/OIDC	2	3162	November 30, 2022
Errors in redirect with id_token for OpenID implicit flow Questions	5	5026	January 17, 2024
Unable to validate id_token received from Okta Dashboard OAuth/OIDC	4	1403	December 25, 2023
Cannot POST /implicit/callback Questions	4	4851	December 15, 2020

Okta vuejs implicit callback token truncated

Related topics