Second Brain

❯

❯

cleanup 2026 04 17 conversation flush bulk

❯

❯

❯

xint oauth pkce state mismatch on reuse

xint-oauth-pkce-state-mismatch-on-reuse

Apr 12, 20261 min read

infra/security
mcp/tools
agent/claude-code
infra/networking

xint-oauth-pkce-state-mismatch-on-reuse

Each invocation of xint’s OAuth flow generates a fresh PKCE code_challenge and state parameter. Reusing an authorization URL from a previous invocation causes a state mismatch error during token exchange. The authorization URL and the token exchange must be paired within the same invocation; never mix URLs across separate xint auth setup runs.

Related

xint-oauth-callback-port-mismatch-8477-vs-3333
xint-oauth-callback-port-is-3333-not-8477
xint-pkce-state-must-match-same-invocation
xint-oauth-callback-port-3333-not-8477
xint-oauth-pkce-callback-and-required-scopes
xint-oauth-pkce-state-per-invocation-manual-exchange-procedu
xint-oauth-callback-port-3333-must-match-developer-portal
xint-oauth-pkce-single-flow-no-regeneration
xint-oauth-pkce-state-mismatch-each-invocation-generates-new

Graph View

xint-oauth-pkce-state-mismatch-on-reuse
Related

Backlinks

xint-oauth-callback-port-3333-not-8477
xint-oauth-callback-port-is-3333-not-8477
xint-oauth-callback-port-mismatch-8477-vs-3333
xint-oauth-pkce-single-flow-no-regeneration
xint-oauth-pkce-state-mismatch-each-invocation-generates-new
xint-pkce-state-must-match-same-invocation
xint-oauth-callback-port-3333-must-match-developer-portal
xint-oauth-pkce-state-per-invocation-manual-exchange-procedu
xint-oauth-pkce-callback-and-required-scopes

Created with Quartz v4.5.2 © 2026

CIOS
Mission Control