Salesforce error: Id_Token_Error: Missing or invalid iss

yuval

Hi, we are tying to set up a salesforce SB to work with a dev site using fusion. when using test url we are getting the following error:

We can’t log you in because of the following error.
Id_Token_Error: Missing or invalid iss

we are passing the our dev site as the token as described here: https://fusionauth.io/docs/v1/tech/oauth/integrations/salesforce

Any idea on what can be the reason for this error?

yuval

Anyone from FusionAuth can give us a hint? we are passing the site url as token issuer, is this right?

mark.robustelli

Hello @yuval,
I'm not very familiar with Salesforce but when taking a look at the guide there is a step that says "Scroll down to the Salesforce Configuration section and open the address from Test-Only Initialization URL in an incognito window.". What do you see when you try that?

If you are not getting that information, can you please describe in a little more detail what steps you have taken and when you receive the above message about the invalid iss?

yuval

The problem was a wrong token issuer defined in SF auth. provider configuration. Our The SF Auth. Provider token issuer field need to have the same VALUE as defined in FusionAuth (for example acme.com) and not the url of the instance as described in the help document. (https://your.fusionauth.application.url)

mark.robustelli

@yuval Thanks for following up and sharing with the community.