Feature: Please provide more information failed exchange logs
Description: The current failed auth code logs (type:feacft) do not have enough information to diagnose what the application is running into. They should have protocol error information, like if the clientid/secret was incorrect, or the pkce validation failed, or just in general, why was the call “Unauthorized”. Right now, it only provides the masked code, which is fine for correlation, but not much else, and the failed exchange isn’t even correlated with the user history.
Use-case: With our use case of Auth0, we do not run/have access to the applications being registered in our auth0 instance. Those developers may not know anything about how their system is configured. With better information in the logs, we can better support their use cases. There are plenty of examples here in this forum of other auth0 users asking why they’re getting “Unauthorized” on their code exchange.