search

amazon-archives / amazon-cognito-auth-js

The Amazon Cognito Auth SDK for JavaScript simplifies adding sign-up, sign-in with user profile functionality to web apps.
Apache License 2.0
424 stars 232 forks source link

invalid request, using sample to trigger authorization. what could be wrong in my request? help? #86

Open sham4402 opened 6 years ago

sham4402 commented 6 years ago

request mydomain///oauth2/authorize? redirect_uri:https://www.google.co.in/?gfe_rd=cr&dcr=0&ei=W05zWpyXBoPE8wfThprQAg response_type:token client_id:ujgvs4tt73c47f82nt21e2a8k state:ghsrE3sUh8wVlilTvb7KeBqdH0w4VhDK scope:phone openid identity_provider:Facebook userContextData:eyJwYXlsb2FkIjoie1wiY29udGV4dERhdGFcIjp7XCJVc2VyQWdlbnRcIjpcIk1vemlsbGEvNS4wIChXaW5kb3dzIE5UIDEwLjA7IFdpbjY0OyB4NjQpIEFwcGxlV2ViS2l0LzUzNy4zNiAoS0hUTUwsIGxpa2UgR2Vja28pIENocm9tZS82My4wLjMyMzkuMTMyIFNhZmFyaS81MzcuMzZcIixcIkRldmljZUlkXCI6XCJveHN5ZGhmNjNwNDNhdmJuYmg2czoxNTE3NTA2MDAzOTI3XCIsXCJEZXZpY2VMYW5ndWFnZVwiOlwiZW4tVVNcIixcIkRldmljZUZpbmdlcnByaW50XCI6XCJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgeDY0KSBBcHBsZVdlYktpdC81MzcuMzYgKEtIVE1MLCBsaWtlIEdlY2tvKSBDaHJvbWUvNjMuMC4zMjM5LjEzMiBTYWZhcmkvNTM3LjM2Q2hyb21lIFBERiBQbHVnaW46Q2hyb21lIFBERiBWaWV3ZXI6TmF0aXZlIENsaWVudDpXaWRldmluZSBDb250ZW50IERlY3J5cHRpb24gTW9kdWxlOmVuLVVTXCIsXCJEZXZpY2VQbGF0Zm9ybVwiOlwiV2luMzJcIixcIkNsaWVudFRpbWV6b25lXCI6XCIuNTozMFwifSxcInVzZXJuYW1lXCI6XCJcIixcInVzZXJQb29sSWRcIjpcIlwiLFwidGltZXN0YW1wXCI6XCIxNTE3NjgxNjM3ODQ1XCJ9Iiwic2lnbmF0dXJlIjoicG5MWVk1ejNpUlhOU0kyL1RDMlhWTGNBWXhETENNSGJweVR5N21HdkpvTT0iLCJ2ZXJzaW9uIjoiSlMyMDE3MTExNSJ9

response Cache-Control:private Connection:keep-alive Content-Length:0 Date:Sat, 03 Feb 2018 18:13:59 GMT Expires:Thu, 01 Jan 1970 00:00:00 UTC Location:https://www.google.co.in/?gfe_rd=cr&dcr=0&ei=W05zWpyXBoPE8wfThprQAg#error_description=unauthorized_client&state=ghsrE3sUh8wVlilTvb7KeBqdH0w4VhDK&error=invalid_request Server:Server Strict-Transport-Security:max-age=31536000 ; includeSubDomains x-amz-request-id:61c87b10-138e-422c-9cb2-5e9135e402f8 X-Application-Context:application:prod:8443 X-Content-Type-Options:nosniff X-Frame-Options:DENY X-XSS-Protection:1; mode=block

yuntuowang commented 6 years ago

Hi @sham4402, this part looks not really correct: mydomain///oauth2/authorize? Can you double check this? A correct example is:

https://******.auth.us-east-1.amazoncognito.com/oauth2/authorize?response_type=token&client_id=*******&redirect_uri=https://www.amazon.com