我正在击中以下端点
https://<my company>.onelogin.com/oidc/token
有时我会收到以下错误响应,但我不确定这意味着什么。
{"error":"invalid_request","error_description":"client authentication must only be provided using one mechanism"}
我将以下字段作为参数发送:
grant_type=authorization_code
代码=已编辑
redirect_uri=已编辑
client_id=已编辑
client_secret=已编辑
谁能解释一下为什么这个端点间歇性地失败?
最佳答案
我们已经弄清楚是什么导致了这种“单一机制”问题。我们向 OneLogin 技术支持团队发送了电子邮件,并收到了以下回复:
As you can see in our documentation the placement of "client_secret" is dependent on your Token Endpoint Authentication Method setting. API Reference
If the Authentication Method = POST then "client_secret" is in the body.
If the Authentication Method = Basic then the "client_secret" is encoded and placed in the Authorization header.
Your application is currently sending this value in both Authorization Header and POST body. In the past this would not have been an issue but with the tightening to spec it will cause a 400 error for your application.
他们很快就会更新他们的文档,但现在,请使用本指南来消除应用程序中的“单一机制”错误。
关于api - 这个错误: 'client authentication must only be provided using one mechanism' 是什么意思,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/52635508/