Sam Havron

Hi @rvaneerdewijk can you try this? https://github.com/Netflix/lemur/issues/3705#issuecomment-892675964 It's possible that Azure implemented the OAuth2 RFC in a case-sensitive way.

Hi @rvaneerdewijk - nice! That adjustment seems to have gotten you closer to the end of the OAuth2 flow. This new error is during retrieval of the user profile after...

@rvaneerdewijk nice!! It looks like you're getting to the very end of the flow. For the stale OAuth token issue, that warning is intended to be thrown to prevent users...

For the email error -- can you see what's in the full `profile` dict by [printing this line](https://github.com/Netflix/lemur/blob/29286ad323f15dcebebf65459fe53ebf0bcc92bd/lemur/auth/views.py#L141)? The `KeyError` indicates that Azure is not including any data under `"email"`...

Yay! @hosseinsh may have additional thoughts, but it could make sense to raise a PR for this to support future Azure users who want to use OAuth2. It sounds like...

Hi @Syesad, Could you add a literal `b` in front of your `OAUTH_STATE_TOKEN_SECRET` in config? ```python OAUTH_STATE_TOKEN_SECRET = b'' ``` It needs to be [bytes-like](https://cryptography.io/en/latest/glossary/#term-bytes-like); it should be generated that...

Hi @Syesad cool, looks like the state token secret is working. For this new bad request error during token exchange, I have a guess that might merit a PR: https://github.com/Netflix/lemur/blob/26601920820e6138fe78b7d5fc9af18019af5e2b/lemur/auth/views.py#L69...

Hmm, maybe it wants you to set https://github.com/Netflix/lemur/blob/f82741144b44f18066baa9a152ef32a7953e9bbc/lemur/auth/views.py#L134 ? You're so close to the end of the oauth flow!

Hi @21stcaveman That weekend validity check runs here: https://github.com/Netflix/lemur/blob/3783fbeaa1645bbee022827f4f53ffb12dd65a61/lemur/common/validators.py#L128 You can set `LEMUR_ALLOW_WEEKEND_EXPIRATION` to true in your config to allow it to pass. My understanding is that DigiCert has a...