<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7VPaSANOkta Classic EngineIntegrationsAnswered2024-04-30T09:18:24.000Z2017-06-21T13:49:44.000Z2017-06-23T15:45:47.000Z

j5v7c (j5v7c) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:20 AM
OAuth 2.0 - system claims could not be evaluated
I am trying to implement the OAuth 2.0/OIDC using Okta as Identity Provider. I have sucessfully created the authorization server but I have run into a problem when trying to reach the token retrieval endpoint.

  
  1.  {  "error": "server_error",  "error_description": "One of the system claims could not be evaluated." }
 

Steps to reproduce:

1. User visits the Get Authorization Code endpoint (/v1/authorize) as described in the Postman docs (I get the code and state back as expected)

2. Pass the code to my REST API, which then tries to obtain user tokens from Okta by visiting the Get Access Token With Code endpoint (/v1/token) as described in Postman docs (I get the error posted above as a response)

 

Question:

How can I find out what exactly went wrong?

 

All the claims in the authorization server are defaults and I didn't tinker with them. I have no idea which one is failing or why. I can retrieve the authorization server metadata from the API but trying to get user tokens keeps failing.

 

If you need any additional information please do let me know.
  • 1 answer
  • 3.18K views
This question is closed.
Loading
OAuth 2.0 - system claims could not be evaluated