Error Codes
TokenIDP returns OAuth-compatible errors where applicable and may include domain-level validation details for administrative APIs.
OAuth Errors
| Error | Meaning |
|---|---|
invalid_request | The request is malformed or missing required values |
invalid_client | Client authentication failed |
invalid_grant | Authorization code, refresh token, device code, or request ID is invalid |
unauthorized_client | The client is not allowed to use the requested flow |
unsupported_grant_type | The requested grant is not enabled or supported |
invalid_scope | Requested scope is invalid or not allowed |
Common Pitfalls
- Handling every failure as a sign-in failure instead of checking the specific error.
- Ignoring redirect URI mismatches during authorization code exchange.
Troubleshooting
- Compare the client registration, allowed grant types, redirect URI, and requested scopes.