UserInfo fetch request error 401

JonWinchester · December 14, 2022, 6:19pm

On login, I get userinfo Failed to load resource: the server responded with a status of 401 ().

var oktaConfig = {
issuer: “https://trial-8358756.okta.com/oauth2/default”,
redirectUri: ‘https://localhost:44367/home’,
clientId: “0oa3lfeevz0nT1C93697”,
scope:“openid email profile”

The get for userinfo fails with a 402 error
GET https://trial-8358756.okta.com/oauth2/default/v1/userinfo 401

Also, the idToken.claims.scopes only indicates openid and email

erik · December 15, 2022, 12:37am

Hello,

Are you passing the accees_token in the Authorization header?

curl -X GET \
-H "Authorization: Bearer ${access_token}" \
"https://${baseUrl}/userinfo"

Thank You,

JonWinchester · December 15, 2022, 1:39pm

I’m using the widget, so this is the code:
const oktaSignIn = new OktaSignIn(oktaConfig);

oktaSignIn.authClient.token.getUserInfo().then(function (user) {
document.getElementById(“messageBox”).innerHTML = "Hello, " + user.email + “! You are still logged in! :)”;
document.getElementById(“logout”).style.display = ‘block’;
console.log(“Still logged in”);
console.log("Name : " + user.email + ", " + user.name + ", " + user.firstName);
console.log("displayName : " + user.displayname + “name:” + user.family_name + user.lastname + user.email);

}, function (error) {
oktaSignIn.showSignInToGetTokens({
el: ‘#okta-login-container’
}).then(function (tokens) {
oktaSignIn.authClient.tokenManager.setTokens(tokens);
oktaSignIn.remove();
//alert(“Okta login”);
const idToken = tokens.idToken;
document.getElementById(“messageBox”).innerHTML = "Hello, " + idToken.claims.email + “! You just logged in! :)”;
document.getElementById(“logout”).style.display = ‘block’;
console.log("You logged in " + idToken.claims.family_name + ", " + idToken.claims.username + ", " + idToken.claims.email);
console.log("displayName : " + idToken.claims.displayName);

erik · December 15, 2022, 9:56pm

Hello,
Your config passed to OktaSignIn() needs to embed the authorize params,

var oktaConfig = {
    redirectUri: ‘https://localhost:44367/home’,
    clientId: “0oa3lfeevz0nT1C93697”,
    authParams: {
            “https://trial-8358756.okta.com/oauth2/default”,
            scopes: ['openid', 'profile', 'email']
    }
}

oktaSignIn.authClient.token.getUserInfo() uses the error function to login a user.
I would expect you will see this error each time you load the page when there is not an existing valid token storage.

Thank You,

Post		Replies	Views
401 Error to authorize user Questions	7	4553	May 4, 2021
Using my own identity provider, it fails to sign in but then tries to connect to user info and throws an invalid user info OAuth/OIDC idp	5	752	July 6, 2024
Invalid Response Questions	1	4712	January 12, 2024
Okta oneID does not authenticate OAuth/OIDC	4	2569	October 10, 2022
401 error on login using the sample link Questions	6	7093	December 10, 2019

UserInfo fetch request error 401

Related topics