Device Authorization with Okta using zitadel/oidc

Hello! I'm attempting to use

zitadel/oidc

zitadel/oidc

zitadel/oidc

zitadel/oidc for device authorization against Okta, but I'm getting back this error from

DeviceAuthorization

DeviceAuthorization

DeviceAuthorization

DeviceAuthorization:

ErrorType=invalid_request Description=The client_assertion_type is invalid.

ErrorType=invalid_request Description=The client_assertion_type is invalid.

ErrorType=invalid_request Description=The client_assertion_type is invalid.

ErrorType=invalid_request Description=The client_assertion_type is invalid.

This appears to be due to the

client_assertion

client_assertion

client_assertion

client_assertion fields being included in the request even when empty. If I modify the fields in https://github.com/zitadel/oidc/blob/main/pkg/oidc/token_request.go#L243-L244 to include the

omitempty

omitempty

omitempty

omitempty attribute, device authorization against Okta works.

Is this a known issue, or is there a known workaround? I'm happy to create an issue and a PR if that helps.

Device Authorization with Okta using zitadel/oidc

Similar Threads