I’m testing an OIDC implementation from my machine and using ngrok to expose it for backchannel requests.
I’m able to go through the first half of the auth, but when I get to Exchange Code from Token the request always fails with a 500 response for code_to_token.
{
"error": "Failed to retrieve token"
}
No requests are being made to the backchannel URLs. Are ngrok domains blocked from backchannel requests, or am I missing something? I’ve tried other tools for OIDC testing, and they work just fine.
Hi @nhalstead
Welcome to the Auth0 Community!
What type of application are you using? Regular or SPA?
If you are using a Regular app, I understand that you have configured your authentication profile to be Private Key JWT? If so, does setting it to Client Secret (Post) solve the issue? You will need to send the client secret and id value in the request body.
Looking forward to your reply!
Kind Regards,
Nik
Hi again @nhalstead
Since you have not replied back regarding the matter, I will be marking my previous post as the Solution.
Feel free to jump in or post again in case this topic is closed referencing this post!
Kind Regards,
Nik