Skip to:
The use of openid scope in the token request with client_credentials grant may produce wrong error message.
openid
client_credentials
At least for the clients with no audiences registered nor requested, the error message is:
{"error":"invalid_request","error_description":"InvalidMessageContext"}
Even though it should be
{"error":"invalid_target","error_description":"Improper or disallowed resource indicator"}
Modified token-flow to ignore self audience via openid-scope with client_credentials grant
The use of
openidscope in the token request withclient_credentialsgrant may produce wrong error message.At least for the clients with no audiences registered nor requested, the error message is:
{"error":"invalid_request","error_description":"InvalidMessageContext"}Even though it should be
{"error":"invalid_target","error_description":"Improper or disallowed resource indicator"}