I am developing an App and using Okta OpenID as authentication. Everything works fine as long as I use client secret as client authentication. The user can login, I get the groups.
But as soon as I switch the client authentication Public key / Private key, upload the public key. I get a user not authorized for this app message after the user logen in with his userid. The user is assigned to a group where the app is assigned too.
Do you have anything in your logs explaining what is causing this particular behavior? For example, is the user actually receiving tokens or is there maybe an API error when your application requests those tokens?
Hi, after tinkering around I generated a key in the UI instead of uploading it and after that it worked, I did not made any changes to my code, just rotated the keys.
This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.