Unable to execute OIDC flow : The required parameter: [code_challenge] was not found in the request.

Hi All,

We are replacing our SAML authentication with IBM OpenID authentication service.

We created the form and initially we were able to authenticate without code challenge. But it is failing when the code challenge is included in the service.

“Unable to execute OIDC flow : FBTOAU202E The required parameter: [code_challenge] was not found in the request.”

We don’t have this field available on the OIDC form. Does anyone implemented OIDC authentication service with code challenge?

Refer attachment for screenshot of parameters required for OpenID.

Similar question raised for mobile development but no answer for the post Unable to execute OIDC Flow : Code_Challenge is Required | Support Center

OIDC.png1695×483 39.7 KB

@KiranKS Please list any support tickets that you log in parallel to questions on this forum. I see that you logged ·INC-B38238 which is still open. Please continue to work with GCS and update your question here with the solution once the issue is resolved.

Also please see if the information in the below post helps:

Troubleshooting OpenID Connect (OIDC) integrations

@KiranKS I see that the support ticket has been closed.

Currently there is no way around in using PKCE during OIDC sso flow. The feature for PKCE in OIDC flow will be implemented in future releases (FDBK-113686)

GCS also assisted in setting up OIDC and the issue was resolved.

@MarijeSchillern We are implementing a similar scenario.

Can you please let us know what was the solution provided for this from GCS team ?

Also Can I check where are we on FDBK-113686?

Thanks,

Vinay

@VinayKumarL16594575 for any enquiries about the status of known enhancement requests, please contact your Pega Account executive.

As far as I can tell there has been no movement on that FDBK entry.

Please log a support ticket via the MSP if you need technical help for your particular issue.