Open markb-trustifi opened 2 years ago
Seems like not an issue with okta-auth-js library, but with Authorization Code flow in your org.
When you get redirected to /login/step-up/redirect
blank page and you click 'Inspect' in context menu, do you see any errors in console?
Please reach out to support team at support@okta.com to analyze your authorisation flow issue.
There are no errors. There is some JavaScript code that supposed to do window.postMessage
. I think this post message doesn't work. The authOktaClient.token.getWithRedirect
flow works well as well as creating authorization link manually and running it with window.open
works well.
Describe the bug?
I’m using @okta/okta-auth-js client for signing Okta users to the website.
After I enter username/password an Okta popup redirects to the blank page before reaching my BE. I see only blank popup with this URL: https://mydomain.okta.com/login/step-up/redirect?stateToken=00g4GtzI98_asoZlkxIFg89xwOKO2fBsO7PvL_SpIw
The debug logs from
devMode
after theauthOktaClient.start()
:OKTA-AUTH-JS:updateAuthState: Event:undefined Status:emitted
ThegetWithRedirect
flow works correct. When I execute authorization URL directly the flow reaches the BE:It also seams that the Okta client caches API calls? Once I run it with
responseType:"token"
and continues behaving like it is "token" even when I changed it back to the "code".What is expected to happen?
Okta popup should request my BE with an Authorization Code and return a json data from there.
What is the actual behavior?
After I enter username/password an Okta popup redirects to the blank page before reaching my BE: https://mydomain.okta.com/login/step-up/redirect?stateToken=00g4GtzI98_asoZlkxIFg89xwOKO2fBsO7PvL_SpIw
Reproduction Steps?
Execute an Okta Code flow with
getWithPopup
.SDK Versions
6.7.2
Execution Environment
MacOS 11.6 with Chrome 103
Additional Information?
No response