32.12 Troubleshooting OAuth and OpenID Connect

This section discusses the following issues and workaround:

Section 32.12.1, The Token Endpoint Returns the Invalid Code Error Message
Section 32.12.2, OAuth Tokens Are in Binary Format Instead of JWT Format
Section 32.12.3, Users Cannot Register a Client Application
Section 32.12.4, Token Exchanges Show Redirect URI Invalid Error
Section 32.12.5, Users Cannot Register or Modify a Client Application with Specific Options
Section 32.12.6, A Specific Claim Does Not Come to the UserInfo Endpoint during Claims Request
Section 32.12.7, Access Gateway OAuth Fails
Section 32.12.8, After Allowing Consent, 500 Internal Server Error Occurs
Section 32.12.9, The Access Token Does Not Get Exchanged with Authorization Code When Using a Multi-Node Identity Server Cluster
Section 32.12.10, No Error Message When a Token Request Contains Repetitive Parameters
Section 32.12.11, OAuth Token Encryption/Signing Key Is Compromised or Corrupted
Section 32.12.12, Tracing OAuth Requests
Section 32.12.13, OAuth Client Registration Fails If a Role Policy Contains a Condition Other than LDAP Attribute, LDAP Group, or LDAP OU
Section 32.12.14, The Identity Injection Policy Does Not Inject Passwords
Section 32.12.15, OAuth Apps Fail After Upgrading Access Manager
Section 32.12.16, Authorization Server Responds with the Service Unavailable Message for a Revocation Request
Section 32.12.17, (Windows) Cannot Configure Some of the OAuth Features After an Upgrade