OAUTH_INVALID_GRANT
Issue
The authorization code or refresh token provided to the identity provider is invalid, expired, revoked, or the redirect URI does not match the one used in the original authorization request.
Resolution
- Re-run the OAuth flow from the Glean Admin Console to obtain a new authorization code.
- Ensure the redirect URI configured in Glean exactly matches the one registered with the identity provider, including the protocol and any trailing slashes.
- If the identity provider uses short-lived authorization codes, complete the OAuth flow promptly without delays.
- Check whether the refresh token has been revoked in the identity provider's admin console.
For additional assistance, contact Glean Support.