Device Authorization with Okta using zitadel/oidc

Hello! I'm attempting to use zitadel/oidczitadel/oidc for device authorization against Okta, but I'm getting back this error from DeviceAuthorizationDeviceAuthorization:

ErrorType=invalid_request Description=The client_assertion_type is invalid.

ErrorType=invalid_request Description=The client_assertion_type is invalid.

This appears to be due to the client_assertionclient_assertion fields being included in the request even when empty. If I modify the fields in https://github.com/zitadel/oidc/blob/main/pkg/oidc/token_request.go#L243-L244 to include the omitemptyomitempty attribute, device authorization against Okta works.

Is this a known issue, or is there a known workaround? I'm happy to create an issue and a PR if that helps.

ZITADEL•12mo ago•

12 replies

Jon @ Posit

Device Authorization with Okta using zitadel/oidc

Hello! I'm attempting to use zitadel/oidczitadel/oidc for device authorization against Okta, but I'm getting back this error from DeviceAuthorizationDeviceAuthorization:

ErrorType=invalid_request Description=The client_assertion_type is invalid.

ErrorType=invalid_request Description=The client_assertion_type is invalid.

Continue the conversation

Join the Discord to ask follow-up questions and connect with the community

ZITADEL

ZITADEL - Identity infrastructure, simplified for you.

4,550 Members

Join