This page is not created by, affiliated with, or supported by Slack Technologies, Inc.
2021-08-16
Channels
- # announcements (3)
- # babashka (48)
- # beginners (35)
- # calva (3)
- # chlorine-clover (5)
- # clj-kondo (9)
- # cljdoc (20)
- # cljsrn (1)
- # clojure (55)
- # clojure-europe (33)
- # clojure-nl (3)
- # clojure-norway (6)
- # clojure-spec (7)
- # clojure-uk (27)
- # clojurescript (95)
- # closh (1)
- # conjure (1)
- # cursive (16)
- # datomic (30)
- # emacs (7)
- # honeysql (1)
- # hugsql (2)
- # introduce-yourself (2)
- # jobs (1)
- # lsp (30)
- # malli (22)
- # nbb (11)
- # news-and-articles (1)
- # off-topic (8)
- # pathom (21)
- # polylith (39)
- # portal (4)
- # practicalli (4)
- # protojure (1)
- # re-frame (14)
- # releases (1)
- # restql (1)
- # reveal (24)
- # sci (1)
- # sql (21)
- # vim (11)
- # xtdb (33)
Morning!
does anyone here have experience with AWS Cognito?
I am trying to get an authorization code exchanged for a user token
but I cannot get beyond an http/400 "error" : "invalid_client"
I've been trying to test it by
• manualy pointing a browser at the cognito ui login page
• getting redirected to a (non-existent) logged in page
• manually copy-and-pasting the code from the logged in URI to an Intellij HTTP scratch pad, wher I attempt to POST to the /oauth2/token
I note that the login page drops a couple of cookies; and I am starting to wonder if the /oauth2/token endpoint requires those cookies.
But that is just a guess
If my user pool client does not have a Secret, can I completely skip the Authorization=Basic Header?
or do I need to put in Base64 encoded client Id?
Request Parameters in Body client_id
Client ID.
Must be a preregistered client in the user pool. The client must be enabled for Amazon Cognito federation.
Required if the client is public and does not have a secret.
yeah so there definitely has to be a clent_id parameter in the body of the POST
but does that mean I can skip on the
Authentication: Basic` ` bit of the Header
(I seem to get an "error" : "invalid_client" either way, so perhaps it is not related to my actual problem
or perhaps it is, I understand that security consideration mean not giving too much away about what you are actually doing wrongly
Authorization
If the client was issued a secret, the client must pass its client_id and client_secret in the authorization header through Basic HTTP authorization. so.. if the client was not issued a secret...
I found the problem; my redirect-uri was
redirect-uri I put in the form parameter did not contain that port numberthanks for your help
Good Morning™
I’m delighted to say that I joined On The Market today. Unfortunately for @djm_uk, I am going to be joining his team. What did you do wrong in your past life David?
Haha, so self-inflicted?
Happy Monday 🙂
Morning