<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content

Authentication API - "403 Forbidden" Error

Okta Classic Engine
API Access Management
Integrations

Overview

When making a request to the /v1/token endpoint to retrieve the access token, the below error is received:

Authentication API - 403 forbidden

Applies To

  • Okta API

  • OpenID Connect

Cause

The XSRF token is not present in the request.  XSRF (Cross-Site Request Forgery) prevents someone else from intercepting the request, modifying it, and sending it from somewhere other than his/her machine. 

Solution

Use the react-native-cookies module and clear cookies manually before calling the /v1/token endpoint.

Loading
Okta Support - Authentication API - "403 Forbidden" Error