OmniAuth/Devise for RoR app -- 404 Bad Request/The requested feature is not enabled in this environment

dragos · June 21, 2019, 8:27am

The issue here is that API Access Management is not enabled on your Okta org. This paid feature gives you the possibility to create custom authorization servers, as mentioned here.

If you would like to use the free alternative, the best option would be to use the Okta authorization server, which has the issuer http://vitacvps.okta.com and the configuration file available at https://vitacvps.okta.com/.well-known/openid-configuration.

Saying this, the URL for authorization would look like

https://vitacvps.okta.com/oauth2/v1/authorize?client_id=0oaqz35k9uiFEQmB6356&redirect_uri=http%3A%2F%2Fme%3A5000%2Fuser%2Fauth%2Foktaoauth%2Fcallback&response_type=code&scope=openid+profile+email&state=c707a0177be1d2b6aa9deed02ff949adb51e38a3a1817401

From what I can see, an error occurs on this link, mentioning that the redirect_uri is not whitelisted. In the URL, you have redirect_uri set to

http://me:5000/user/auth/oktaoauth/callback

while in the openid application you have it set to

http://me:5000/users/auth/oktaoauth/callback/

Would it be possible to match the URLs and try again?

Post		Replies	Views
Rails OmniAuth invalid_credentials/404 callback despite success request log Questions	2	4190	February 10, 2024
Rails / Devise Omniauth.- invalid_credentials Questions	11	5719	February 8, 2024
The requested feature is not enabled in this environment OAuth/OIDC	8	21220	December 18, 2019
Simple Authentication with Rails and OmniAuth Developer Blog Comments	9	3523	January 28, 2021
Unable to open Okta Login page from Application getting 404 OAuth/OIDC	5	3097	January 2, 2024

OmniAuth/Devise for RoR app -- 404 Bad Request/The requested feature is not enabled in this environment

Related topics