Hi @cblakeley , @hwilliams the curl was obtain direcly from the GET via Chrome feature, so I did not change the original GET for the test, the GET as I sad contains:
“scope=openid^%^20email^%^20profile&nonce=c20964d3bf5028ca156c06ef97319505”
This is the original GET with “SPACES” in scope parameter:
As I told in the this post Error of the Callback of third party Oauth - #18 by EdgarCap the product (ForgeRock IAM) for this call (authorize) do not accept/need scope parameter.
Here some info you have required:
The text box “Options (RP/ASmetadata)” is empty.
The others informations you have required:
[THREAD 0x69401e0]:
OAUTH2.DBA.check_authentication (('Content' 0 ), ('GET /oauth/admin.vsp HTTP/1.1\r\n' 'Host: 26.0.189.188\r\n' 'User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/115.0\r\n' 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\n' 'Accept-Language: it-IT,it;q=0.8,en-US;q=0.5,en;q=0.3\r\n' 'Accept-Encoding: gzip, deflate, br\r\n' 'Referer: https://<ip>/oauth/admin.vsp\r\n' 'Connection: keep-alive\r\n' 'Cookie: sid=60a4ec4c280a7b107327da054521f759\r\n' 'Upgrade-Insecure-Requests: 1\r\n' 'Sec-Fetch-Dest: document\r\n' 'Sec-Fetch-Mode: navigate\r\n' 'Sec-Fetch-Site: same-origin\r\n' 'Sec-Fetch-User: ?1\r\n' ))
VAL.DBA.oauth_token (2ld, 'oidc', ('xxxx.opendataclient' 'password' ))
DB.DBA.app_reg_verify_error ('https://<ip>/oauth/verify.vsp?service=Auth', ('service' 'Auth' 'url' 'https://<ip>/oauth/verify.vsp?service=Auth' 'scope' 'basic' 'realm' 'http://www.openlinksw.com/ontology/acl#DefaultRealm' 'proc' 'DB.DBA.app_reg_verify_success' 'eproc' 'DB.DBA.app_reg_verify_error' ), 'Auth', '22023', 'Failed to connect to service \"Auth\".')
Regards.