This is a portion of a larger flow coming from Gumroad or Patreon. Right now just trying to get Gluu and WP to connect through MiniOrange OAuth SSO plugin, but failing. User lands on landingpage1 of public Wordpress site. User clicks on GluuWPMiniOrange1 button. Prompted to authorize Gluu + WP. Account creation process takes place. Instead getting error: "Email address not received. Check your Attribute Mapping configuration." Landingpage on Wordpress: https://wp.rpgr.org Gluu server: https://p1.rpgr.org Link that generates the error: https://wp.rpgr.org/?code=05156345-b9fe-484a-8a07-57b1fa18f3c4&scope=openid&session_id=323a6647-555b-4422-9f96-79b37dd3dc86&state=cde1094d8a2663e4bf9526cf5e5d023e_R2x1dVdQTWluaU9yYW5nZTE7aHR0cHM6Ly93cC5ycGdyLm9yZy8%3D&session_state=ed49baf71a4b005d886a9155b4a0d5cda65f6451d75c246362808a5c890428ea.f2d9b206-19d2-4073-b4db-ea5a6aac2716 I have screen shots of the configurations on the WP Miniorange side, and the Gluu side, but don't see an option to add attachments here. So uploaded config screenshots here: https://wp.rpgr.org/wp-content/uploads/2020/05/gluu-wp-miniorange-gluu-openidclient-config-page-1.png https://wp.rpgr.org/wp-content/uploads/2020/05/gluu-wp-miniorange-gluu-openidclient-config-page-2.png https://wp.rpgr.org/wp-content/uploads/2020/05/gluu-wp-miniorange-miniorange-config-page-1.png Using config info from here: https://plugins.miniorange.com/guide-configure-gluu-oauth-server Here is the relevant gluu server's https://p1.rpgr.org/.well-known/openid-configuration Appreciate any suggestions on what is off in my configs? Here is what I see in the /opt/gluu/jetty/oxauth/logs/oxauth.log when I click: 2020-05-21 16:51:13,298 DEBUG [oxAuthScheduler_Worker-2] [org.gluu.service.timer.RequestJobListener] (RequestJobListener.java:53) - Bound request started 2020-05-21 16:51:13,298 DEBUG [oxAuthScheduler_Worker-2] [org.gluu.service.timer.TimerJob] (TimerJob.java:36) - Fire timer event [org.gluu.service.cdi.event.LoggerUpdateEvent] with qualifiers [@org.gluu.service.cdi.event.Scheduled()] from instance 1753087473 2020-05-21 16:51:13,299 DEBUG [oxAuthScheduler_Worker-2] [org.gluu.service.timer.RequestJobListener] (RequestJobListener.java:63) - Bound request ended 2020-05-21 16:51:20,821 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:20,842 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:20,844 DEBUG [qtp1590550415-15] [gluu.oxauth.authorize.ws.rs.AuthorizeRestWebServiceImpl] (AuthorizeRestWebServiceImpl.java:171) - Attempting to request authorization: responseType = code, clientId = 0fae0859-600a-4c38-a4eb-3efd1dd92e81, scope = openid mail, redirectUri = https://wp.rpgr.org, nonce = null, state = 290b6726a4e039a27a659c6a7ef85faf_R2x1dVdQTWluaU9yYW5nZTE7aHR0cHM6Ly93cC5ycGdyLm9yZy8=, request = null, isSecure = true, requestSessionId = null, sessionId = null 2020-05-21 16:51:20,844 DEBUG [qtp1590550415-15] [gluu.oxauth.authorize.ws.rs.AuthorizeRestWebServiceImpl] (AuthorizeRestWebServiceImpl.java:177) - Attempting to request authorization: acrValues = null, amrValues = null, originHeaders = null, codeChallenge = null, codeChallengeMethod = null, customRespHeaders = null, claims = null, tokenBindingHeader = null 2020-05-21 16:51:20,845 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:20,846 DEBUG [qtp1590550415-15] [org.gluu.oxauth.model.authorize.ScopeChecker] (ScopeChecker.java:39) - Checking scopes policy for: openid mail 2020-05-21 16:51:20,873 DEBUG [qtp1590550415-15] [org.gluu.oxauth.model.authorize.ScopeChecker] (ScopeChecker.java:68) - Granted scopes: [openid] 2020-05-21 16:51:20,874 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:20,875 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.RedirectionUriService] (RedirectionUriService.java:77) - Validating redirection URI: clientIdentifier = 0fae0859-600a-4c38-a4eb-3efd1dd92e81, redirectionUri = https://wp.rpgr.org, found = 1 2020-05-21 16:51:20,875 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.RedirectionUriService] (RedirectionUriService.java:83) - Comparing https://wp.rpgr.org == https://wp.rpgr.org 2020-05-21 16:51:20,899 DEBUG [qtp1590550415-15] [org.gluu.oxauth.model.authorize.ScopeChecker] (ScopeChecker.java:39) - Checking scopes policy for: openid mail 2020-05-21 16:51:20,900 DEBUG [qtp1590550415-15] [org.gluu.oxauth.model.authorize.ScopeChecker] (ScopeChecker.java:68) - Granted scopes: [openid] 2020-05-21 16:51:21,037 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:21,038 DEBUG [qtp1590550415-15] [org.gluu.oxauth.auth.AuthenticationFilter] (AuthenticationFilter.java:109) - Starting token endpoint authentication 2020-05-21 16:51:21,038 DEBUG [qtp1590550415-15] [org.gluu.oxauth.auth.AuthenticationFilter] (AuthenticationFilter.java:122) - Starting Basic Auth token endpoint authentication 2020-05-21 16:51:21,039 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:21,039 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:93) - Authenticating Client with LDAP: clientId = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:21,039 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:21,040 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.AuthenticationService] (AuthenticationService.java:570) - ConfigureSessionClient: username: '0fae0859-600a-4c38-a4eb-3efd1dd92e81', credentials: '609665300' 2020-05-21 16:51:21,040 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:21,040 INFO [qtp1590550415-15] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '0fae0859-600a-4c38-a4eb-3efd1dd92e81' 2020-05-21 16:51:21,040 DEBUG [qtp1590550415-15] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81 2020-05-21 16:51:21,042 DEBUG [qtp1590550415-15] [gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl] (TokenRestWebServiceImpl.java:110) - Attempting to request access token: grantType = authorization_code, code = 0346eb46-7fe4-4cd5-8ca7-c7445152dc6c, redirectUri = https://wp.rpgr.org, username = null, refreshToken = null, clientId = 0fae0859-600a-4c38-a4eb-3efd1dd92e81, ExtraParams = {code=[0346eb46-7fe4-4cd5-8ca7-c7445152dc6c], redirect_uri=[https://wp.rpgr.org], client_secret=[sHMYYy5Cny911WikJIT4SJRkGKZaLOQF3igUktoP], grant_type=[authorization_code], client_id=[0fae0859-600a-4c38-a4eb-3efd1dd92e81]}, isSecure = true, codeVerifier = null, ticket = null 2020-05-21 16:51:21,042 DEBUG [qtp1590550415-15] [gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl] (TokenRestWebServiceImpl.java:132) - Starting to validate request parameters 2020-05-21 16:51:21,043 DEBUG [qtp1590550415-15] [gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl] (TokenRestWebServiceImpl.java:140) - Grant type: 'authorization_code' 2020-05-21 16:51:21,043 DEBUG [qtp1590550415-15] [gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl] (TokenRestWebServiceImpl.java:146) - Get sessionClient: 'org.gluu.oxauth.model.session.SessionClient@5e01422a' 2020-05-21 16:51:21,044 DEBUG [qtp1590550415-15] [gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl] (TokenRestWebServiceImpl.java:150) - Get client from session: '0fae0859-600a-4c38-a4eb-3efd1dd92e81' 2020-05-21 16:51:21,045 DEBUG [qtp1590550415-15] [gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl] (TokenRestWebServiceImpl.java:166) - Attempting to find authorizationCodeGrant by clinetId: '0fae0859-600a-4c38-a4eb-3efd1dd92e81', code: '0346eb46-7fe4-4cd5-8ca7-c7445152dc6c' 2020-05-21 16:51:21,057 DEBUG [qtp1590550415-15] [gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl] (TokenRestWebServiceImpl.java:188) - Issuing access token: 5ec4270e-c4d3-4d32-a559-8bc89f94a202 2020-05-21 16:51:21,059 WARN [qtp1590550415-15] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:238) - WARNING! Expired Key is used, alias: 95120eab-6e1f-4847-8970-7cd2923a411a_sig_rs256 Expires On: 2020-05-20 22:10:15 Today's Date: 2020-05-21 16:51:21 2020-05-21 16:51:21,126 DEBUG [qtp1590550415-11] [gluu.oxauth.userinfo.ws.rs.UserInfoRestWebServiceImpl] (UserInfoRestWebServiceImpl.java:133) - Attempting to request User Info, Access token = 5ec4270e-c4d3-4d32-a559-8bc89f94a202, Is Secure = true 2020-05-21 16:51:21,134 DEBUG [qtp1590550415-11] [org.gluu.oxauth.service.UserService] (UserService.java:81) - Getting user information from LDAP: userId = admin 2020-05-21 16:51:21,143 DEBUG [qtp1590550415-11] [org.gluu.oxauth.service.UserService] (UserService.java:90) - Found 1 entries for user id = admin 2020-05-21 16:51:21,144 DEBUG [qtp1590550415-11] [org.gluu.oxauth.service.ClientService] (ClientService.java:136) - Found 1 entries for client id = 0fae0859-600a-4c38-a4eb-3efd1dd92e81