GeoffS.50925 (Customer) asked a question.
Hi
I'm just getting started with an example spring boot application that authenticates against the default Authorization Server. A few weeks ago when I last ran this application everything worked as expected. I came back to it today and I started to receive the following error message
error=invalid_scope
error_description=The authorization server resource does not have any configured default scopes, 'scope' must be provided.
I haven't made any changes to either the application nor my Okta setup since it worked last. Did something change on the Okta side? Also how do I add the standard scopes (openid, email, etc) to my default authorization server?
My setup:
Spring boot 2.4.2
spring-boot-starter-web
okta-spring-boot-starter 1.4.0 (it didn't work with 2.0.1 either)
okta-spring-sdk 1.4.0
application.properties:
okta.domain=dev-4564169.okta.com
okta.oauth2.issuer=https://dev-4564169.okta.com/oauth2/default
okta.oauth2.redirect-uri=/authorization-code/callback
okta.oauth2.postLogoutRedirectUri=http://localhost:8080/okta.oauth2.client-id=0oa4ms1lmGDBI4fMc5d6
The client id and client secret were copied directly from the Okta dashboard.
Controller:
@RestController
public class HomeController {
@GetMapping("/")
public String home(@AuthenticationPrincipal OidcUser user) {
return "Welcome, "+ user.getFullName() + "!";
}
}
Any help or advice is greatly appreciated!
Hi Geoff,
the best approach here would be to create a Support Ticket with our Developers Team through an email to developers@okta.com, so they can review the configuration with you and assist with the setup.
Anna Wtorkiewicz
Technical Support Engineer
Okta Global Customer Care