function readOnly(count){ }
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
+ Start a Discussion

Best Way to Debug SAML Bearer Flow Issues


I am trying to authenticate API calls from my application using the SAML Bearer Token flow and getting an HTTP 400 back with the message {"error":"invalid_grant","error_description":"invalid assertion"}.  As far as I can tell, my post meets all the requirements listed in the documentation, so I don't know if there is still a mistake in the SAML I am generating or a configuration issue, or what.  What is the best way for me to approach debugging this problem? Is there a tool similiar to the SAML validator that can be used with SAML assertions?  Or a log somewhere of why requests are being rejected?


Thanks in advance,



Unfortunately they validator does not yet support the Bearer assertion flow.   We're working on better debugging facilities for this.


If you want to post your example, as well as how you're presenting it we can take a look.