Hello people of Auth0.
We have recently started to experience problems when trying to login with the Auth0 Wordpress plugin.
The login page can be reached as usual, but after signing in we are redirected to the Wordpress start page but with /?message=Invalidauthorizationcode added to the URL. See image:
![alt text][1]
Everything was working well a couple of weeks ago, and we have not updated the Auth0 Wordpress Plugin nor the Wordpress Version since the time it was working. Also: there are no new versions available.
I know this issue has previously been on topic in this forum, but the answers have mostly been to check the Base 64 encoding. This, however, is already as it should be. See image below:
![alt text][2]
When checking the Error Log inside Wordpress we get a bit more information:
![alt text][3]
And when checking the Logs inside Auth0 things get more confusing. For every login attempt we get three log items. Success login, Success Exchange & Failed Exchange. See image below:
![alt text][4]
If we click on the Failed Exchange we get the following information:
![alt text][5]
Since our setup was working a couple of weeks ago, it feels like our setup should be fine. In the wordpress plugin we have added (and double checked) the following information from the Auth0 client page: Domain, Client ID, Client Secret, API token. WordPress login enabled and the Login redirection URL is at the default value.
On our client page, inside Auth0, we have added:
Allowed Callback URLs: http://ourwebsite.net/ index.php?auth0=1
Allowed Origins (CORS): http://ourwebsite.net/
So, the bottom line is: we have no clue why this stopped working for us. I have provided all the information I could think of but would be happy to provide more if someone needs it in order to help us. If someone would be willing to take a look at this we would be forever grateful!
Thanks in advance, and happy easter everybody!