I have web app configure Keycloak with EntraID, when login with the email address is success but from the network it capture HttpStatusCode 400
https://{domain}/identity/realms/cwos-stg-entraid/broker/Azure/endpoint?code=xxxxxx
Payload consist of code, state & session_state
Any guide how to debug this error
If you are using OpenID Connect, you can switch on the “Store Tokens” and “Stored Tokens Readable” in your Identity Provider configuration, and then invoke the Keycloak API to retrieve external IdP tokens.
This allows you to retrieve the token issued by EntraID, and inspect its claims; this, in turn, may provide some help with debugging.