Oauth - scope validation request - code parameter is missing
Hello all,
I'm trying to integrate F5 (APM) and an IAM (NETIQ solution) with Oauth protocol. So my F5 is the Oauth client, the IAM the authorisation + resource server. (if I understood well OAuth concept) So on the VPE in created an OAuth logon page + Oauth client box + Oauth Scope box and crafted the different requests for redirect-request / token-request / scope-request / …
When I try now to authenticate I arrive on the F5 logon page, I choose the IAM authentication method, I'm redirected to the IAM logon page (so redirect request works), if I authenticate I'm redirected back to the F5 and I have a token on the F5 session (So token-request is working and the Oauth client in the VPE is terminated and working) now when the F5 try to get the scope I've an issue. When F5 try to do the scope-validation-request, the resource server respond with "HTTP error 400: Invalid Request: OAuth Client Authentication Failure because code parameter is missing in the request". However on the F5 documentation it says that the code should be automatically added in requests and we don't have to configure code attribute (link : https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-sso-13-0-0/37.html). I also tried to add it manually but I can't find where the code value is stored on the F5 as it's not stored in session variable.
It's the first time I try to integrate OAuth with a 3rd party and I'm a little stuck now as I don't know how to add this code parameter or why the F5 doesn't include it automatically.
Is someone already experienced this kind of issue ?
Thanks