Fix client creds auth (#429)

#424 seems to break client creds based auth because it uses create_request() wrong, which will lead to a POST request to /oauth2/v1/token with a JSON body, content-type application/json. But this endpoint does not accept this content-type and returns with 'Accept and/or Content-Type headers likely do not match supported values.'. Instead it expects the content-type to be 'application/x-www-form-urlencoded', and the client assertion needs to be form encoded. This corrects that issue.
okta · Jan 13, 2025 · 07c77b6 · 07c77b6
1 parent 3807dce
commit 07c77b6
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/okta/oauth.py b/okta/oauth.py
@@ -58,7 +58,7 @@ async def get_access_token(self):
 
         # Craft request
         oauth_req, err = await self._request_executor.create_request(
-            "POST", url, {'client_assertion': jwt}, {
+            "POST", url, form={'client_assertion': jwt}, headers={
                 'Accept': "application/json",
                 'Content-Type': 'application/x-www-form-urlencoded'
             }, oauth=True)