Login to Chrome extension returns error Corrupted OAuth access token

I’m creating a Chrome extension that logs in to Auth0 using launchWebAuthFlow. Auth0 is configured for Facebook and Google. It worked fine to login to Facebook. Then I logged in to Google and that also worked fine. But now every time I try to login to Facebook, I get the login popup wher I can choose between Google and Facebook - as expected. When I choose Google it works fine. But if I choose Facebook it always asks me to enter my Facebook password. That’s already an indication that something is wrong. I do so and complete that flow, but it comes back to the launchWebAuthFlow callback with a redirect url like this:

https://.chromiumapp.org/#error=invalid_request&error_description=Corrupted%20OAuth%20access%20token

So my question is: what does Corrupted OAuth access token mean and where is it coming from: Facebook or Auth0?

BTW I also have a web site that logs in to the same app using the auth0 sdk, and in that case it doesn’t prompt for the facebook password and it just logs in fine

Hi @neilboyd

Welcome to the Auth0 Community!

I am sorry about the delayed response to your question!

As far as I have checked, this appears to be a bug caused on Facebook’s sides in regards to the request made to the token endpoint.

I would recommend to check out this thread regarding the same matter and get in contact with them as well.

Kind Regards,
Nik

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.