I implemented Google and Dropbox authentication in my NestJS app within two distinct strategies. The issue is that I never get a refresh_token along with the access_token. I already tried to remov...

When I try to use next auth to create a discord oauth client and I click sign in, I get this error: https://next-auth.js.org/errors#get_authorization_url_error client_id is required { message: 'cl...

I'm using Expo AuthSession to login in my app through my IdentityServer4 implementation. I have the problem only in ANDROID when I try to log in my IdentityServer with my Google account. The AuthSe...

The role uma_authorization is apparently created by default in Keycloak. What is this role? Can I safely delete it?

I'm using firebase to implement Sign in with Apple on my React web application. I have created an AppID, Service ID with Sign in with Apple enabled. Created a Key, configured and completed the requ...

I am using LinkedIn API to pull updates from there and display on the website. While using OAuth, I am storing the token in a file and then pull it from there again to prevent the login popup. Howe...

I have a PHP page which i used to send notifications to the users of a mobile app i developed , this page works fine until last month , then it gave me this error {"multicast_id":517406...

To authenticate a user with a GitHub App we only need to do two requests to the login api: GET https://github.com/login/oauth/authorize POST https://github.com/login/oauth/access_token Now that ...

How do I write unit tests for those endpoints of my API that require oAuth authentication? Simply adding oAuth tokens to the request headers doesn't work (perhaps because the test database is not...

I am trying to redirect to IdentityServer for authorization, and getting "code challenge required" in redirect URL. An error message shows invalid_request with code challenge required, and also my...

I can't seem to be able to utilize the Google API with Oauth. What am I missing? Error Message: com.google.api.client.auth.oauth2.TokenResponseException: 400 Bad Request { "error" : &quo...

Following scenario: I have two Microservices A and B. Service A is a Bearer client that has an open api and receives requests from clients that have to be authorized by keycloak. Now I want to send...

When I submit an auth call to google to I get the popup from the google window, then when I submit my credentials and press submit it forwards on to something like https://auth.firebase.com/v2/FIR...

I am accessing web api using oauth token. Token expires after 1 hour. But I want to add functionality to generate new token when it expires. I found that in case of expired token it sends StatusC...

I have a bit of a problem, I have a django application that is using Django OAuth Toolkit and I can't get the access token from the server when using Authorization Code flow. Implicit flow works fi...

I am using pyjwt library for decoding the JWT token. I got this error when I am decoding. The code was given in the documantation. import jwt encoded_jwt='''eyJ0eXAiOiJKV1QiLCJhbG......''' secret...

I'm developing an single-page with Javascript+AngularJS on the client side and Spring MVC + Spring Security OAuth2 on the server side. Spring MVC acts as a REST controller for any AJAX requests fro...

Currently following this tutorial on how to implement OAuth JWT Authentication. Stuck on two things at the moment which have become a bit of a pain to solve. This code below throws 'definition' ...

I have a Google Service Account that my app uses to retrieve data from Google Analytics. When I created the account I downloaded a client_secrets file with all the necessary information for autho...

Is it possible to include multiple Authorization Headers in an HTTP message? Specifically, I would like to include one of Bearer token type (passing an OAuth access token) and one of Basic type (pa...

I am trying to verify a HS256 JWT Token generated with locally ran KeyCloak Authentication Provider on https://jwt.io. The KeyCloack instance is running on my local machine inside a docker contai...

The only documented way to use Telegram 3-rd party authorization is to use their script that is being provided at https://core.telegram.org/widgets/login This script (as I digged) works in pretty ...

On the CI server, I want to fetch a config file that we maintain on Github so it can be shared between many jobs. I'm trying to get this file via curl, but these approaches both fail (I get a 404):...

Following Taiseer Joudeh excellent article Enable OAuth Refresh Tokens in AngularJS App using ASP .NET Web API 2, and Owin (http://bitoftech.net/2014/07/16/enable-oauth-refresh-tokens-angularjs-app...

I implemented the oauth2 web flow in order to get access_token from users of my app. With the access_token, I would like to do the following actions: Get user informations Create a repo for thi...