Hello, I am trying to setup a custom OpenID Connect Identity Provider with Salesforce SSO and it seems like it is called the /authorize and /token endpoints correctly, but after receiving the response from the /token endpoint I see this error screen.
I've checked the id token JWT sent and everything looks correct, and in the claims there is definitely a "sub" claim with a unique string. So I'm not sure why I'm seeing this error. Thanks
2 answers
I figured this out.. turns out in the SF config my api was under /oauth/userinfo instead of /oauth/userInfo (capital I). If anyone else has this issue confirm all the paths for your APIs
