Unauthorized Client, but is authorized?

Blake_Peavy · February 26, 2025, 9:57pm

I'm using this redirect for login:
$"https://login.usw2.pure.cloud/oauth/authorize?client_id={clientId}&response_type=code&redirect_uri={decodedUri}";

I get ?error=unauthorized_client from the response.

Reusing some of this for my test:

github.com

MyPureCloud/quick-hits-dotnet/blob/main/authorization/oauth-auth-code-guide/Controllers/HomeController.cs

// >> START oauth-auth-code Authorization code grant login without a client library
// >> START oauth-auth-code-step-1
using authorization_code_aspdotnet.Models;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Logging;
using System;
using System.Collections.Generic;
using System.Diagnostics;
using System.Linq;
using System.Threading.Tasks;
using System.Net;
using System.Net.Http;
using System.Net.Http.Headers;
using System.Text;
using System.Text.Encodings.Web;
using Newtonsoft.Json.Linq;

namespace authorization_code_aspdotnet.Controllers
{
    public class HomeController : Controller

This file has been truncated. show original

The clientId is valid.
It's setup as a token implicit grant.
The user logging in has oauth:client:authorize permission.
The oauth scope has oauth and users.
Redirect is in the redirect AuthorizedUris box.

Am I missing anything?

Goal is to get the logged in user.

Jerome.Saint-Marc · February 27, 2025, 6:46am

Hello,

The url you are using does not correspond to an OAuth Client defined with Token Implicit Grant Type.

Such url (with response_type=code) corresponds to an Authorization Code Grant flow. Same with the C# code.
You have to create an OAuth Client with Grant Type set to: Code Authorization/PKCE.

Regards,

system · March 29, 2025, 6:46am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.