Securing Apps with Nginx and Okta

I have followed this link and tried to secure an internal app with okta and Lasso.
i created a developer account to try it out, but whenever i try to login to my app i am being redirected to an okta page saying : 400, bad request,

Identity Provider: Unknown

Error Code: invalid_request

Description: The ‘redirect_uri’ parameter must be an absolute URI that is whitelisted in the client app settings.

Would appreciate any help here as i cant seen to understand what i did wrong …

Looking at that guide, in your config.yml you have a callback_url attribute. That url needs to be listed in your Okta developer console under Applications > Your App > Login redirect URIs

1 Like

Thanks, This helped !
Now, after i am being successfully authenticated in okta, it seems to be stuck in a redirection loop.
like it trying to run the auth again and again …
in the logs i see : ERRO[0083] no jwt found …
any ideas ?