Could not decode access token response

V13.0.1 Keycloak Server

Using PKCE for first time with an external OIDC IDP (unsure if it is related to PKCE or the IDP is not behaving as expected).

Is the log error generated subsequent to authentication on the external IDP is due to incorrect client secret?

2021-06-23 16:29:44,447 ERROR [org.keycloak.broker.oidc.AbstractOAuth2IdentityProvider] (default task-43) Failed to make identity provider oauth callback: org.keycloak.broker.provider.IdentityBrokerException: Could not decode access token response.
at org.keycloak.keycloak-services@13.0.1//org.keycloak.broker.oidc.OIDCIdentityProvider.getFederatedIdentity(OIDCIdentityProvider.java:364)

aused by: com.fasterxml.jackson.databind.exc.MismatchedInputException: No content to map due to end-of-input
at [Source: (String)""; line: 1, column: 0]
at com.fasterxml.jackson.core.jackson-databind@2.12.1//com.fasterxml.jackson.databind.exc.MismatchedInputException.from(MismatchedInputException.java:59)
at com.fasterxml.jackson.core.jackson-databind@2.12.1//com.fasterxml.jackson.databind.ObjectMapper._initForReading(ObjectMapper.java:4688)

I also have the same problem. @melancholia Did you already solve this problem?

The event was traced to the OP.

The OP was not sending over details on the account after authentication.

1 Like