Hi Team
I am new to OKTA and trying to setup with dotnet core 3.1
I am using Swagger for the API request. and getting the following Error
{
“error”: “invalid_client”,
“error_description”: “Browser requests to the token endpoint must use Proof Key for Code Exchange.”
}
Please Help.
It sounds like you’re getting the error because you’re not using the PKCE flow.
I’m not sure what your use case is but maybe it would be easier if you try out one of the sample apps from https://github.com/okta/samples-aspnetcore#aspnet-core-3x-samples
Hi, thanks for your reply.
I’ve a dotnet core web api and have setup the api documentation using Swagger UI. For development purpose I’ve setup the Swagger UI to use Authorization Code + PKCE flow to get token and access the authorised controllers. This is where I’m getting the error message.
So the token call is still being made on the front end, right? What type of client authentication are you passing and what is the application in Okta configured to use?