Receive 500 error on token refresh

teddyward · June 15, 2020, 8:58pm

Hi,

With no changes in our software, for the last couple months, we will sometimes get a 200 error, and sometimes get a 500 error when trying to refresh tokens for one of our tenants

Sample python script:

import requests
payload = '{"grant_type": "password", "scope": "offline_access", "username": "USER", "password": "PASSWORD"}'
headers = {"Content-Type": "application/json"}
endpoint = 'https://auth-stage.kevalaanalytics.com/oauth/token'
r = requests.post(endpoint, headers=headers, data=payload)

Response:

And relevant log summary from the Auth0 “logs” section:

Is this an auth0 error, or is there some custom code that we are running somewhere on refresh that causes this, which I could fix? We don’t have any “hooks” set up…

dan.woda · June 17, 2020, 8:33pm

Hi @teddyward,

Welcome to the Community!

Would you DM me your tenant name so I can take a look at the log?

Thanks,
Dan

teddyward · June 17, 2020, 10:34pm

Hi @dan.woda!

Thanks for the response! I dm’ed you! I will try to follow up here if we reach a resolution so that other people experiencing the same problem can potentially learn from it.

Teddy

dan.woda · June 18, 2020, 8:12pm

I responded in the DM but I am going to respond here as well.

Can you try to turn off your rules, then run through a login with user and see if you still get the error?

teddyward · June 25, 2020, 8:36pm

Hi Dan!

Thanks for your help!!!

That did indeed allow me to narrow down the error. I now know that it is caused by one of my rules, and that specifically it is caused by the Authorization extension timing out. Part of one of my rules requests the user groups via:
https://{host}.us8.webtask.io/{idstring}/api/users/{userid}/groups?expand=true

and I had a timeout set for 5 seconds.

This made me realize that when I changed the storage backend to s3, I hadn’t realized how significantly this slowed down our authz process. So I’ve switched back to webtask storage, which I think will solve the issue.

Thank you!!!

Teddy

dan.woda · June 25, 2020, 9:53pm

Glad you were able to figure it out. Thanks for the update too!

Dan

system · July 10, 2020, 9:53pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
When I call the api "/oauth/token" to refresh token,it responses 500!Why?Help! Help management-api , grants	4	1529	February 17, 2023
Oauth/token offers an unexpected 500 Help bugs , 500	2	3810	August 27, 2019
Internal server error when trying to refresh access token Help refresh-tokens , server-error	1	3113	June 16, 2021
API Error Internal Server Error 500 Help management-api , api-explorer	4	7832	February 25, 2021
Refresh token gives "Cannot read property 'scope' of undefined" Help auth0 , refresh-tokens , server-error	3	4925	December 15, 2020

Receive 500 error on token refresh

Related Topics