How to use PKCE and getToken together

[GrzegorzCzm]

Hi,

I have custom OIDC client in my app and I wanted to start using PKCE. So far I was using client_secret_basic auth method without any problems. When I have applied PKCE

  providers: [
    {
     ...
      checks: 'pkce',
      client: {
        token_endpoint_auth_method: 'none'
      },
    ...
}

and removed secrets from my app, authorisation goes smoothly and works fine. Tokens are granted.

But problem become when I try to use

import { getToken } from "next-auth/jwt"

secret is required parameter for it. And from docummentation we have info like:
Pass getToken the same value for secret as specified in pages/api/auth/[...nextauth].js.

but I do not have secret in [...nextauth].js anymore as it is not required when using PKCE.

Any clue how it should work and what is missing from my side.

lib versions:
"next": "^12.0.7",
"next-auth": "^4.0.5",

[GrzegorzCzm]

Ok, probably I have found my mistake. Secret defined in [...nextauth].js is just to encrypt JWT and it is not the same secret what secret used for authentication on custom oidc provider.