cloudfront-auth icon indicating copy to clipboard operation
cloudfront-auth copied to clipboard

Published 20 hours ago verified publisher icon Widen

DISCOVERY_DOCUMENT OKTA Auth fails

Open sri-pavan opened this issue 4 years ago • 3 comments

The DISCOVERY_DOCUMENT does not include the api login url for okta its juts creates a random /callback url which there is no documentation on configuring

sri-pavan avatar Feb 03 '20 13:02 sri-pavan

Can you expand more on what your issue is?

What is the "it" that is creating a random /callback url? Our CloudFront URL is used for the /callback url.

payton avatar Feb 22 '20 16:02 payton

It implies the build.sh

the Discovery Document for OKTA should be a separate URL which we get from OKTA, when we replaced the disc_doc url with the one form OKTA our app started working before it was giving 400 errors as the discovery document didnt exist

sri-pavan avatar Mar 03 '20 17:03 sri-pavan

I think whats going on here, after encountering this myself, is that during the build.js workflow I think It's confusing what "Base URL" means. It should be the okta base url (https://<company>.okta.com) not the application base url (<xxx>.cloudfront.net), if you provide the cloudfront url the lambda function will timeout and you'll get some weird behavior like a 503 or something.

qwwqwwq avatar Mar 24 '22 16:03 qwwqwwq