<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D51Y00009XzU1LSAVOkta Classic EngineSingle Sign-OnAnswered2024-04-15T09:09:49.000Z2020-09-24T12:04:48.000Z2020-10-23T13:17:38.000Z

mvl3h (mvl3h) asked a question.

September 24, 2020 at 12:04 PM
OIDC Forgot password flow is not working

Hi,

 

The user hits OIDC URL and clicks on Forgot Password and enters email id.

User receives a password reset link and resets the password.

GET /oauth2/ausjsllz6fb8chQZ14x6/v1/authorize?client_id=0oajsl0xfwoTRY4Ho4x6&nonce=ff1d962090a36451b98d268a728181e9&redirect_uri=https%3A%2F%2Flocalhost&response_type=code&scope=openid&state=ff1d962090a36451b98d268a728181e9 HTTP/1.1

Response HTTP/1.1 302 Found

 

GET /login/login.htm?fromURI=/oauth2/v1/authorize/redirect?okta_key=q2Ox_G_bV4q1shIrxqLbYhgI1fy8iugNXeOCJQ4C2Co HTTP/1.1

 

Once user completes forgot password flow, user is redirected to okta end user dashboard instead of actual redirect url (https://localhost)

 

/login/sessionCookieRedirect?checkAccountSetupComplete=true&token=20111xplUp9xlyKFPLB9P3uUR1g5z8y1aCY-YvoXaiDdMO_INv7ZEE_&redirectUrl=https%3A%2F%2Faon-asc.okta.com%2Fuser%2Fnotifications

 

GET

checkAccountSetupComplete: true

token: 20111xplUp9xlyKFPLB9P3uUR1g5z8y1aCY-YvoXaiDdMO_INv7ZEE_

redirectUrl: https://aon-asc.okta.com/user/notifications

 

I feel okta_key is failed to check in the database or lost to redirect the user to right redirect URL.

 

Is this a bug?. Do we have a workaround?

  • 3 answers
  • 1.43K views

  • User15840036845736539082 (Vendor Management)

    It looks like in your case the state token is not getting preserved when the password reset flow is being initiated, that being said please open a ticket with the Okta Customer Support team so we can troubleshoot this issue based on your feedback.

    Selected as Best

  • User15840036845736539082 (Vendor Management)

    It looks like in your case the state token is not getting preserved when the password reset flow is being initiated, that being said please open a ticket with the Okta Customer Support team so we can troubleshoot this issue based on your feedback.

    Selected as Best

    • mvl3h (mvl3h)

      Hi Andrei,

       

      As you mentioned i have noticed that oktaStateToken is not getting generated when password reset flow is initiated. Could you please help to resolve the case i have raised already with okta support team. All the traces/details are updated in the case.

       

      Case  00955427

       

      Appreciate your help.

      Expand Post

  • mvl3h (mvl3h)

    Thanks Andrei.

     

    Same configuration works in lower environment but fails in Prod. Hence I have raised a case with Okta support team and waiting for their response.

This question is closed.
Loading
OIDC Forgot password flow is not working