Closed scefali closed 3 months ago
I discovered that I had to explicitly set the authenticateWith
option to request_body
. It's documented as optional, but this part of the logic wasn't firing without it: https://github.com/sergiodxa/remix-auth-oauth2/blob/6df15b7b0190e0df690a5ba88fd5f9265e91311d/src/index.ts#L402
Follow up:
After fixing the missing client_id
, I ran into an invalid_grant
issue. I solved that by explicitly setting codeChallengeMethod
to S256
.
Should authenticateWith
and codeChallengeMethod
be optional? Are they just missing intended defaults in v2.0.0
?
I am trying to set up
remix-auth-oauth2
with Google and Microsoft. In both cases, I see that I am getting an error like:I would think that I could use the simple out-of-the-box
OAuth2Strategy
for each but that fails:Have pretty much the an analogous setup with Google, and I see the same error when I put debugging in the underlying
@oslojs/oauth2
library (note that there is a problem there whereerror
gets propagatederror_description
doesn't, the latter has the actual failing info). Am I doing something wrong or is this a bug?