I’m getting this error as well, but not with Wordpress. Users get a 500 error on my redirected PHP page sporadically, I cannot seem to reproduce the error myself. When this happens, my nginx error log shows a similar entry as above:
PHP message: PHP Fatal error: Uncaught Auth0\SDK\Exception\CoreException: Invalid state in /var/www/blah.com/vendor/auth0/auth0-php/src/Auth0.php:444
Looking through your tutorial on troubleshooting, I made the following changes to my setup:
- Added a version of my redirect page sans www.
- Added no cache headers to my redirect page.
I’ve not seen the error in my logs since making these two changes. Since this bug is intermittent I cannot reliably verify it’s been resolved for me. Going to keep an eye on the logs. @josh.cunningham Should I start a new thread since my situation doesn’t involve WP?