Include an Upstream 'Nonce' Parameter with OIDC Connections

auth0.knowledge3 · November 26, 2024, 9:30pm

Overview

An external identity provider may require an upstream nonce parameter to be sent in the request to the authorization endpoint from an OIDC connection in Auth0.

Applies To

OIDC Enterprise Connections

Cause

If a nonce parameter appears to be missing, it is likely because the OIDC connection is set to ‘Back Channel’.

Solution

At the moment, a nonce is not included as an upstream parameter for OIDC connections set to ‘Back Channel’. The only way to include a nonce is to use the Front Channel setting.

Edit Solution

Topic		Replies	Views
Nonce mismatch in OpenID Connect Enterprise Connections Help oidc	4	6403	December 7, 2019
Is Nonce requried for the Authoziation Code flow Help oidc , protocols	2	2437	July 20, 2023
Authorization Code with PKCE via connection Knowledge Articles management-api , oidc , custom , connection , oauth2 , enterprise-connectio	1	2049	September 26, 2022
Enterprise Connection config issue Help connections , oidc-enterprise-connection	0	707	September 17, 2023
OIDC Enterprise Connection Cannot Perform Federated Logout Knowledge Articles oidc-connection , log-out	1	378	March 19, 2024

Include an Upstream 'Nonce' Parameter with OIDC Connections

Overview

Applies To

Cause

Solution

Related topics