Troubleshooting
Your request cannot be processed
What's happening
When you initiate login in your web application, you are redirected to the IBM Security Verify if you encounter a "Your request cannot be processed." error.
This error may be followed by either:
- "CSIAQ0154E The system cannot find the client with identifier [CLIENT_ID]."
- "CSIAQ0167E The redirection URI that is provided in the request [REDIRECT_URI] is either invalid, or does not meet the matching criteria for the registered redirection URI."
Why it's happening
You have either provided an invalid tenantUrl, an invalid clientId, or an invalid redirectUri value in the config object used in the OAuthContext constructor - see Config for more details
How to fix it
Make sure that your config object follows the structure shown here
Access denied callback error
What's happening
The client has successfully logged in at the tenantUrl, but an error occurred in the redirectUri, such as below.
http://localhost:3000/authorize/callback#error=access_deniedWhy it's happening
The client has a valid tenant account, however they do not have permission to use the application.
How to fix it
Check with your administrator to make sure the user has permission to use your application.
No refresh token when using Authorization Code flow (AZN)
Why it's happening
The application is not configured to generate refresh tokens
How to fix it
Login to your tenant, switch to admin mode and go into your application configuration, make sure you have Generate refresh token enabled under sign-on options
