openid-connect-generic icon indicating copy to clipboard operation
openid-connect-generic copied to clipboard
verified publisher icon oidc-wp

The client MUST NOT use more than one authentication method in each

Open billnet76 opened this issue 3 years ago • 2 comments

Hello, we have a problem with using the plugin.

We always receive the following response from the server: "ERROR (invalid_request): The client MUST NOT use more than one authentication method in each".

I believe the problem lies the plugin using basic authentication but is also sending the 'client_id' and 'client_secret' credentials in the post data of the request against the token endpoint, as well as in the authorization header. This causes authentication against certain systems to fail with the above error.

It's correct? What did we forget to do?

Thanks for the support Bill

billnet76 avatar Oct 19 '22 09:10 billnet76

What IDP are you using? This is interesting as I've configured the plugin for testing with at least 5 different IDPs and have never seen this error. I will definitely take a look at the specs and see where we may be off here.

timnolte avatar Oct 19 '22 10:10 timnolte

Hello @timnolte my IDP is WSO2, but in the meantime we have solved the problem!

You are right , the error was in the server side configuration, now everything works correctly.

Thanks again for this job.

billnet76 avatar Oct 19 '22 11:10 billnet76