Wordpress -> unauthorized_client

By: Vitalii Bendyna user 21 Jun 2017 at 8:01 a.m. CDT

9 Responses
Vitalii Bendyna gravatar
Hello! I was testing SSO with Wordpress. I've installed oxd, added oxd plugin to Wordpress, activated it and so on. All worked smoothly. But now somehow integration just disappeared. I can't see it in OpenID -> Clients. There were 4 other clients, and they disappeared too. Now when I follow https://wordpress.example.com/wp-admin, I'm getting this error: ``` {"error":"unauthorized_client","error_description":"The client is not authorized to request an access token using this method.","state":"murvdql622grffoscgeb903j4l"} ``` What should I do in this case? Thanks.
OS Version : N/A
closed

Answers

By Jajati Badu Account Admin 21 Jun 2017 at 8:45 a.m. CDT

Copy
Jajati Badu gravatar
Hi Vitalii, Thanks for trying oxd. I will help you to resolve this issue. Could you please let me know what is the op host URL ? It will help if you can attach your oxd log file. Kind Regards, Jajati

By Mohib Zico Account Admin 21 Jun 2017 at 8:46 a.m. CDT

Copy
Mohib Zico gravatar
Vitalii, Dynamic client are registered for 24 hours lifetime by default. You need to specifically increase that time from oxTrust for every client you dynamically registered.

By Vitalii Bendyna user 21 Jun 2017 at 9:01 a.m. CDT

Copy
Vitalii Bendyna gravatar
Hello! Thank you for quick reply. So, Gluu server host: gluu.example.com Wordpress host: wp.example.com OXD server installed directly on wordpress's server. Logs are uploaded here: [https://ufile.io/vys4i](https://ufile.io/vys4i), as I didn't find how to attach files directly here

By Vitalii Bendyna user 21 Jun 2017 at 9:07 a.m. CDT

Copy
Vitalii Bendyna gravatar
> You need to specifically increase that time from oxTrust for every client you dynamically registered Hello! What do you mean - dynamically registered? You're right, after 24 hours all clients disappeared. But now I'm not able to login to the site! If I follow https://wp.example.com/wp-admin in private mode or even in different browser, it returns error specified above...

By Jajati Badu Account Admin 21 Jun 2017 at 9:12 a.m. CDT

Copy
Jajati Badu gravatar
You need to login to Gluu.example.com as admin user Then navigate to openid > Client Open your registered WP client At the end of the page you can see expiry date. You need to increase the date. Kind Regards, Jajati

By Vitalii Bendyna user 21 Jun 2017 at 10:19 a.m. CDT

Copy
Vitalii Bendyna gravatar
> Open your registered WP client I'd like to but it disappeared. And now I don't have a possibility to manage WordPress site via admin panel. I know that I can disable plugin via changing database, but I don't want to do it. I want to fix this issue via Gluu.

By Vitalii Bendyna user 22 Jun 2017 at 2:32 a.m. CDT

Copy
Vitalii Bendyna gravatar
> At the end of the page you can see expiry date Is there some way to set expiration date to never? I'm asking as this "client" is our web page (test environment) and we don't need to set up expiration date.

By Jajati Badu Account Admin 22 Jun 2017 at 5:17 a.m. CDT

Copy
Jajati Badu gravatar
Hi Vitalii, There is an automated process in Gluu server which automatically deletes the expired clients. As mentioned by Mohib, Dynamically registered clients will expire in 24 hours.So the clients you had registered are no more available in Gluu server. To resolve this issue, you need to follow below steps 1- Login to your Wordpress as Admin ( Using Wordpress login not OpenId Connect) 2- Open OpenId Connect > Delete the existing Registration 3- DO a new Client registration like you had done before in WP 4- Go to your Gluu OP host as admin. 5- Navigate to OpenId Connect> Clients > Select your client 5- Scroll down to the end and change "Client Secret Expires" date value to a maximum value Regarding "Is there some way to set expiration date to never?" you can not set expiration date to never, however you can set the value to maximum date you want. Kind Regards, Jajati

By Vitalii Bendyna user 22 Jun 2017 at 5:19 a.m. CDT

Copy
Vitalii Bendyna gravatar
OK, I've got it. Thank you very much!

Post an answer