fix client assertion not send through POST body

Signed-off-by: Tien Nguyen <[email protected]>
okta · Dec 16, 2024 · ff4da5d · ff4da5d
1 parent bb688ab
commit ff4da5d
Showing 1 changed file with 1 addition and 4 deletions.
diff --git a/internal/m2mauth/m2mauth.go b/internal/m2mauth/m2mauth.go
@@ -24,7 +24,6 @@ import (
 	"encoding/pem"
 	"errors"
 	"fmt"
-	"io"
 	"net/http"
 	"net/url"
 	"os"
@@ -224,16 +223,14 @@ func (m *M2MAuthentication) accessToken() (*okta.AccessToken, error) {
 		return nil, err
 	}
 
-	var tokenRequestBuff io.ReadWriter
 	query := url.Values{}
 	tokenRequestURL := fmt.Sprintf(okta.CustomAuthzV1TokenEndpointFormat, m.config.OrgDomain(), m.config.AuthzID())
 
 	query.Add("grant_type", "client_credentials")
 	query.Add("scope", m.config.CustomScope())
 	query.Add("client_assertion_type", "urn:ietf:params:oauth:client-assertion-type:jwt-bearer")
 	query.Add("client_assertion", clientAssertion)
-	tokenRequestURL += "?" + query.Encode()
-	req, err := http.NewRequest("POST", tokenRequestURL, tokenRequestBuff)
+	req, err := http.NewRequest("POST", tokenRequestURL, strings.NewReader(query.Encode()))
 	if err != nil {
 		return nil, err
 	}