Postman is an API platform for building and using APIs. Postman simplifies each step of the API lifecycle and streamlines collaboration so you can create better APIs—faster.
Error: Client credentials should only be provided once. Remove them from either the 'Authorization' header or the body.
Steps to Reproduce
1) Create new request
2) Go to Authorization
3) Set OAuth 2.0
4) Fill all fields u need
5) Hit "Get new Access Token"
6) Go on webpage, authorize, wait for callback back to Postman
7) Error: Client credentials should only be provided once. Remove them from either the 'Authorization' header or the body.
Settings:
Header Prefix Basic
Token Name test_oauth
Grant Type: Authorization Code (With PKCE)
Callback URL: XXXXX
Authorize using browser (YES)
Auth URL: XXXXX
Access Token URL: XXXXX
Client ID: XXXXX
Client Secret: XXXXX
Code Challenge Method: SHA 256
Code Verifier: Automatically generated if left blank
Scope
XXX
State
XXX
Environment Information
Platform Type: macOS
Postman Version: Version 8.0.6 (8.0.6)
Operating System: macOS Big Sur 11.2.3 (20D91)
Additional Context
client_id is present in the request body, that is the problem, I do have set "client Authentication" to "send as basic auth header" but client id is present in request body anyway
Error: Client credentials should only be provided once. Remove them from either the 'Authorization' header or the body.
Steps to Reproduce 1) Create new request 2) Go to Authorization 3) Set OAuth 2.0 4) Fill all fields u need 5) Hit "Get new Access Token" 6) Go on webpage, authorize, wait for callback back to Postman 7) Error: Client credentials should only be provided once. Remove them from either the 'Authorization' header or the body.
Settings: Header Prefix Basic
Token Name test_oauth Grant Type: Authorization Code (With PKCE) Callback URL: XXXXX Authorize using browser (YES) Auth URL: XXXXX Access Token URL: XXXXX Client ID: XXXXX Client Secret: XXXXX Code Challenge Method: SHA 256 Code Verifier: Automatically generated if left blank
Scope XXX State XXX
Environment Information
Additional Context client_id is present in the request body, that is the problem, I do have set "client Authentication" to "send as basic auth header" but client id is present in request body anyway