[openstreetmap/openstreetmap-website] HTTP 500 error when trying to get access-token from master.apis.dev.openstreetmap.org with "openid" scope (Issue #4334)

[Hauke Stieler]

> Actually, right now, I get a 404 on https://master.apis.dev.openstreetmap.org/oauth2/token

It's a POST request that looks like this when using cURL (with parameters in angled brackets):

```
curl --location 'https://master.apis.dev.openstreetmap.org/oauth2/token?grant_type=authorization_code&code=<the-code-from-the-oauth-callback>&redirect_uri=<the-redirect-url-to-your-app>' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'client_id=<the-client-id>' \
--data-urlencode 'client_secret=<the-client-secret>'
```

That request (I just tried it with meaningless dummy values) works and returns the expected error response (but with an expected 400 and not 404 status code):

```
{"error":"invalid_client","error_description":"La autenticación del cliente ha fallado por cliente desconocido, cliente no autenticado, o método de autenticación incompatible."}
```

Interestingly in Spanish ... well ... at least something :shrug: 


-- 
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/4334#issuecomment-1821377669
You are receiving this because you are subscribed to this thread.

Message ID: <openstreetmap/openstreetmap-website/issues/4334/1821377669 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20231121/55900f46/attachment-0001.htm>