Oauth/token endpoint returning access_denied, Unauthorized

jng · June 28, 2018, 10:52am

Hi,

I have one ‘Regular Web Applicaiton’ configured with three callbacks:

https://synergy.us.webtask.io/auth0-authentication-api-debugger
testing environment
production environment

Our development was

test with the Auth0 debugger extension — OK, able to get the bearer token
test with our developer’s environment (just running on own machine to a test page) – OK, able to get the bearer token

However, when we added the third environment, the oauth/token endpoint consistently gives us
{“error”:“access_denied”,“error_description”:“Unauthorized”}

The authorize endpoint works fine, but the token endpoint just won’t return the bearer token when the redirect URI is pointing to the 3rd environment.

Any ideas?

jng · June 29, 2018, 8:01am

We’ve found the issue. We kept hitting the problem with sample .NET code generated by Postman (using the Auth0 collection), but could get our token using the sample JQuery code.

It turns out the 105 version of RestSharp was causing the issue. Not sure how it communicated with the API that caused the API to return an access_denied, but upgrading to RestSharp 106 solved the problem.