I'm trying to call (POST) the Auth0 delegation endpoint from Postman with the following request, as suggested by Auth0:
Content-Type: 'application/json'
{
"client_id": "{CLIENT_ID}",
"grant_type": "urn:ietf:params:oauth:grant-type:jwt-bearer",
"id_token": "{YOUR_ID_TOKEN}",
"target": "lwTL1rYVfC0KsBUFPeKWY3HvGjbIgdDM",
"api_type": "salesforce_api",
"scope": "openid"
}
I'm getting this error, even though the grant_type parameter is included in the above request:
{
"error": "invalid_request",
"error_description": "Missing grant_type parameter"
}
What am I doing wrong here?
From Auth0's new OIDC Conformant Authentication docs:
Also, from Auth0's Using AWS with Tokens docs:
Reading further from the Secure Alternatives to the Legacy Grant Types link:
More info on legacy grant types can also be found here.
So, the problem you are having is that Delegation has been deprecated. That means the
/delegation
endpoint and more importantly thejwt-bearer
grant type, have been deprecated. If you are a new customer, you are out of luck. If you are an existing customer you need to contact support to get it enabled.As to why Postman returns the cryptic
"Missing grant_type parameter"
error as opposed to the much better"Grant type 'http://auth0.com/oauth/legacy/grant-type/delegation/id_token not allowed for the client."
error you get with other browser extension based REST Clients, your guess is as good as mine.