”Invalid state”
By far the most common error. You see it as a flash-message after the provider redirects back to Groniz. What it means: Groniz generates a one-time CSRF token (thestate
parameter) when you start the connect flow and stores it against your
session. The provider returns it in the redirect; Groniz compares the two.
A mismatch — or a missing token — produces this error.
Common causes
- You started the connect in one browser tab and finished it in another.
- You refreshed the provider’s login page mid-flow.
- A third-party-cookie blocker (Brave’s Shields, Safari’s ITP, hardened uBlock, Firefox Total Cookie Protection) dropped the session cookie between the redirect out and the redirect back.
- You took longer than the session expiry to complete the OAuth login.
- Open the Groniz tab in a single, fresh browser session.
- Whitelist
groniz.comin any privacy extensions for the duration of the connect. - Click “Add Channel” again from inside the Groniz app — never bookmark or refresh the provider’s authorize page.
- If your browser is in private/incognito mode, switch to a normal window.
”invalid_grant”
The OAuth code Groniz received from the provider was rejected when it tried to exchange it for an access token. Common causes- The same OAuth code was used twice — usually from a double-click or retry after a transient error.
- The code expired (most providers give you ~60 seconds).
- The redirect URI configured on the provider doesn’t exactly match the one Groniz is sending. A trailing slash counts.
- Start the connect flow over from scratch — codes can’t be reused.
- Re-check the redirect URI in your provider’s developer console matches the URL Groniz is redirecting to, character for character.
”Failed to fetch” / “fetch failed” on provider connect
You see this on calls likePOST /integrations/provider/:id/connect.
What it means: Groniz tried to talk to the provider’s API and the
request failed at the network level — DNS, TLS, or a refused connection.
Common causes
- A custom/obscure Mastodon instance that isn’t publicly reachable.
- A transient provider-side outage.
- For Mastodon, double-check the instance URL is correct and the server is publicly reachable over HTTPS.
- Wait a minute and retry the connect. If it keeps failing, email us at [email protected].
