PushSampleApp based custom push auth factor (OIDC) stuck at "Confirm User" step

sanjaymk · November 8, 2025, 12:41am

I’ve built a push auth factor wrapped around an onDevice KYC SDK (called TruKYC). The code is essentially the PushSampleApp inside the devices SDK on github. The small changes i made are here: kyc-integrations/TruKYCOkta/TruKYCOkta/RootCoordinator.swift at 1f7283435ab499d7f04f340433bdd1c5e272d6e5 · sanjaymk908/kyc-integrations · GitHub

I have stubbed out most of my embedded code. The customized plist contains the clientID,URIs etc Ive setup for my authenticator.

During OIN testing, the “Confirm User” steps never completes. System logs show the 2 auth factors setup for my policy showing MFA SUCCESS. Immediately followed by an MFA UNANSWERED response. Network logs show no errors. Standalone tests (outside OIN Testing ie) also show similar erros.

One (speculative) theory offered by perplexity says I am missing okta.authn.manage scope on server (only devsupport can assign that to my org apparently). And this seems necessary for updating the state from CHALLENGE to SUCCESS at /idp/idx/challenge/answer. I have no proof for this.

Can you please help unblock me?

sanjaymk · November 8, 2025, 12:53am

System logs showing MFA UNANSWERED:

Nov 07 16:48:38

Admin Yella Okta (User)
75.218.146.121
Verify user identity
SUCCESS
Custom App Authenticator (AuthenticatorMethod)
Security Key or Biometric (AuthenticatorMethod)
1 more targets
Nov 07 16:48:38

Admin Yella Okta (User)
75.218.146.121
Authentication of user via MFA
UNANSWERED
Admin Yella Okta (User)
Passkey + TruKYC (AuthenticatorEnrollment)
Nov 07 16:48:38

Admin Yella Okta (User)
75.218.146.121
Authentication of user via MFA
SUCCESS
Admin Yella Okta (User)
Security Key or Biometric (AuthenticatorEnrollment)
Nov 07 16:48:32

Admin Yella Okta (User)
75.218.146.121
User login to Okta
SUCCESS
Passkey + TruKYC (AuthenticatorEnrollment)
Okta Dashboard (AppInstance)
Nov 07 16:48:28

Admin Yella Okta (User)
75.218.146.121
Authentication of user via MFA
SUCCESS
Admin Yella Okta (User)
Passkey + TruKYC (AuthenticatorEnrollment)
Nov 07 16:48:28

Passkey + TruKYC (PublicClientApp)
75.218.146.121
OIDC access token is granted
SUCCESS
Admin Yella Okta (User)
Access Token (access_token)
Nov 07 16:48:19

Admin Yella Okta (User)
75.218.146.121
A push was sent to a user for verification
SUCCESS

sanjaymk · November 11, 2025, 4:29pm

Bumping this up for visibility

system · December 11, 2025, 4:29pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Post		Replies	Views
Authentication for user set up for MFA successful through API call without receiving one time verification code on email Questions	2	2555	February 12, 2024
Okta sign in widget MFA issue Questions	2	3586	January 26, 2024
Okta sign in widget stuck on push verification OAuth/OIDC widget	2	293	September 18, 2024
Custom-sign-in Error after approved push notification in Okta Verify Questions	1	3382	January 24, 2024
OKTA Veryfy and Push Notifications Questions	3	3334	March 23, 2021

PushSampleApp based custom push auth factor (OIDC) stuck at "Confirm User" step

Related topics