Tools to Trace OIDC Flows (OAuth flows)
Tools to Trace OIDC Artifacts and Flows Browser Developer Tools : The Network tab in your browser's developer tools (DevTools) is one of the easiest ways to trace HTTP requests, including those involved in OIDC authentication. You can see: The request to Okta's authorization endpoint (for the /authorize request). The redirect back to your app with the code (authorization code). The request to Okta's token endpoint (to exchange the authorization code for an access token and ID token). The response that contains the tokens (JWTs). If you look at the network activity during login, you'll see the various redirects, HTTP requests, and responses. This is helpful for understanding the different stages of the OIDC flow. Postman : Postman can be very useful for manually simulating the OIDC flow. You can configure requests for: The /authorize endpoint to initiate the login flow. The /token endpoint to exchange the authorization code for tokens. This allows you to interact w...