Creating an OIDC Connection Fails with "options.issuer is required" Error

Problem statement

When trying to create OIDC connections via CLI or Dashboard, different discovery URLs throw the same error:

Bad Request: “options.issuer” is required

The discovery URL returns the “issuer” field.

Symptoms

A customer is trying to create OIDC connections via CLI or Dashboard.
Different discovery URLs throw the same error:

Bad Request: “options.issuer” is required

But the discovery URL returns the “issuer” field.

Steps to reproduce

Try to create front channel OIDC with any of these:

Cause

Solution

There is a feature flag that can be enabled by Okta’s Engineering Team that can be enabled to roll back the new schemas for discovery validations when creating OIDC connections. If this is something desired, please open a case with Okta Support referencing this article in the case description.