API Gateway jwt authorizer OIDC discovery endpoint

0

Hi all,

I need to setup an API Gateway JWT authorizer using Okta as provider.
Unfortunately the issuer is not directly accessible and I have to whitelist its URLs.
I have whitelisted:
https://okta-domain/.well-known/openid-configuration
https://okta-domain/.well-known/oauth-authorization-server
https://okta-domain/v1/keys

but it seems it is not enough as accessing I still get:
www-authenticate: Bearer scope="" error="invalid_token" error_description="non-200 status code received from OIDC discovery endpoint"

Do you know which other URLs do I need to whitelist?

Thanks!

1回答
1

To answer my own question for others, the endpoints were ok.
Requests were blocked because they missed accept and user agent headers.

Best

realbot
回答済み 3年前

ログインしていません。 ログイン 回答を投稿する。

優れた回答とは、質問に明確に答え、建設的なフィードバックを提供し、質問者の専門分野におけるスキルの向上を促すものです。

質問に答えるためのガイドライン

関連するコンテンツ