nextjs-auth0: The user does not have a valid access token via getAccessToken
Description
What does it mean when a user does not have a valid access token? I looked outside of this library package and was able to find the access token via /oauth/token endpoint via POST but not sure why this function does not work out of the box?
Reproduction
In my pages/account page I do the search for access token
export async function getServerSideProps({ req, res }) {
const tokenCache = await auth0.tokenCache(req, res);
try {
const { accessToken } = await tokenCache.getAccessToken();
console.log(tokenCache);
} catch (e) {
console.log(e.message); // error message gets generated here.
}
}
Environment
// auth0 configs
export default initAuth0({
clientId: config.AUTH0_CLIENT_ID,
clientSecret: config.AUTH0_CLIENT_SECRET,
scope: config.AUTH0_SCOPE,
domain: config.AUTH0_DOMAIN,
redirectUri: config.REDIRECT_URI,
postLogoutRedirectUri: config.POST_LOGOUT_REDIRECT_URI,
session: {
cookieSecret: config.SESSION_COOKIE_SECRET,
cookieLifetime: config.SESSION_COOKIE_LIFETIME,
storeIdToken: true,
storeAccessToken: true,
storeRefreshToken: true
},
})
// package.json
{
"dependencies": {
"@auth0/nextjs-auth0": "^0.10.0",
"@zeit/next-css": "^1.0.1",
"@zeit/next-less": "^1.0.1",
"@zeit/next-sass": "^1.0.1",
"antd": "^4.0.3",
"axios": "^0.19.2",
"babel-plugin-import": "^1.13.0",
"body-parser": "^1.19.0",
"dotenv": "^8.2.0",
"dotenv-webpack": "^1.7.0",
"express": "^4.17.1",
"isomorphic-unfetch": "^3.0.0",
"less": "3.11.1",
"less-vars-to-js": "1.3.0",
"next": "latest",
"next-compose-plugins": "^2.2.0",
"node-sass": "^4.13.1",
"nodemon": "^2.0.2",
"null-loader": "3.0.0",
"query-string": "^6.11.1",
"react": "^16.13.0",
"react-dom": "^16.13.0",
"react-responsive": "^8.0.3",
"uid-safe": "^2.1.5"
},
"license": "ISC"
}
About this issue
- Original URL
- State: closed
- Created 4 years ago
- Comments: 16 (2 by maintainers)
This is happening on every request. Even though the proxy is working.
The error is,
Our config does include the audience and refresh token.
Actually I take that comment back. Don’t forget that after you add an audience, the previously created users will have the wrong audience and retrieving their JWT will not work. Go under the “authorized applications” and you’ll see the wrong audience listed with old users. Revoke that and reauthorize and you should be good to go
I had the same issue and appeared to be because of misreading/misunderstanding the documentation.
I thought that the above was referring to:
but apparently it is about the Getting an Access Token process in general. So until you set the option to persist the access token, you’ll be getting the error.
I am not sure about the
storeRefreshTokenoption. I got it working without it (for now).@kkomaz could you elaborate on the mismatch? I’m having the same issue where I’m getting back an access token that is not a valid jwt (much shorter) and I’ve set my scopes and api_audience.