Open gao-artur opened 3 weeks ago
@gao-artur Thanks for bringing this to our attention. I've entered an internal ticket for tracking and prioritization: OKTA-824760
@bryanapellanes-okta Any update on this? Is there an alternate preferred option for accessing the Okta Management APIs as a work around in the mean time?
I currently have a "API Services" application configured to use Public key / Private key and I am getting the same error.
Note: I also had to disable "Require Demonstrating Proof of Possession (DPoP)" which was blocking me, Possible related to #745. According to the main help page DPoP should have been handled automatically but it was throwing "GetBearerToken: {"error":"invalid_dpop_proof","error_description":"The DPoP proof JWT cannot be parsed."}" error. Not sure if the 2 are related, but after disabling DPoP I get the "Custom scopes are not allowed" message.
I think I was able to determine the cause of the “Custom scopes are not allowed”
error, but this only applies if you are using multiple scopes.
OAuthApi.cs
var scopes = string.Join("+", Configuration.Scopes);
localVarRequestOptions.FormParameters.Add("scope", scopes);
The space character is encoded twice, the first time string.Join("+", Configuration.Scopes)
and the second time inside the RestSharp library. Because of this, we get okta.groups.read%20okta.users.read
instead of okta.groups.read+okta.users.read
.
Replacing the plus sign with a space solved the problem.
var scopes = string.Join(" ", Configuration.Scopes);
Describe the bug?
It worked in 7.0.6 but doesn't work in all versions between 8.0.0 and 9.0.0.
When trying to use any API with PrivateKey, the following exception is thrown:
What is expected to happen?
The API call should succeed.
What is the actual behavior?
ApiException: Error calling GetBearerToken: {"error":"invalid_scope","error_description":"Custom scopes are not allowed for this request."}
Reproduction Steps?
Add config to
appsetting.json
Try getting the application
Additional Information?
No response
.NET Version
8.0.403
SDK Version
9.0.0
OS version