Trying To Generate an Access Token Using a SAML2 Assertion Grant Type Fails with: The assertion is in malformed format and can not be parsed (Doc ID 2459355.1)

Last updated on JULY 25, 2023

Applies to:

Identity Cloud Service (IDCS) - Version N/A and later
Information in this document applies to any platform.

Symptoms

Trying to obtain an access token using the SAML2 Assertion Grant Type using:

curl -i -H 'Authorization: Basic <base64Encoded clientid:secret>' -H 'Content-Type: application/x-www-form-urlencoded;charset=UTF-8' --request POST https://tenant-base-url/oauth2/v1/token -d 'grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Asaml2-bearer&assertion=<NONbase64Encoded assertion value>&scope=<scope value>' fails with:

{
"error": "invalid_grant",
"error_description": "The assertion is in malformed format and can not be parsed."
}

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Trying To Generate an Access Token Using a SAML2 Assertion Grant Type Fails with: The assertion is in malformed format and can not be parsed (Doc ID 2459355.1)

Applies to:

Symptoms

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!