no bearer token found

[bramuno]

hoping someone can help me. i've tried several different configuration methods based on what's available in the metadata url and I can't get get my apache client to convert the received code into a bearer token. error logs just keep saying to bearer token available

"no bearer token found in the allowed methods" and ive tried all the methods available.

OIDCClientID client
OIDCClientSecret secret
OIDCOAuthClientID client
OIDCOAuthClientSecret secret

OIDCProviderMetadataURL https://token.domain.com/.well-known/openid-configuration
OIDCRedirectURI https://destination.com/mi/email.php
OIDCCryptoPassphrase password
OIDCOAuthServerMetadataURL https://token.domain.com/.well-known/openid-configuration
OIDCResponseType "code"
OIDCResponseMode "query"
OIDCProviderTokenEndpoint https://token.domain.com/as/token.oauth2
OIDCProviderTokenEndpointAuth client_secret_basic
OIDCOAuthIntrospectionEndpointMethod POST
OIDCOAuthIntrospectionEndpoint https://token.domain.com/as/introspect.oauth2
OIDCOAuthIntrospectionEndpointAuth client_secret_basic
OIDCOAuthIntrospectionTokenParamName token
OIDCOAuthAcceptTokenAs header

<Location /mi/email.php>
LogLevel debug
AuthType oauth20
Require valid-user

######## ssl_error_log
[Thu Apr 22 21:56:57.577901 2021] [authz_core:debug] [pid 26044] mod_authz_core.c(809): [client 137.160.241.108:19107] AH01626: authorization result of Require claim email: denied (no authenticated user yet), referer: https://token.domain.com/
[Thu Apr 22 21:56:57.577905 2021] [authz_core:debug] [pid 26044] mod_authz_core.c(809): [client 137.160.241.108:19107] AH01626: authorization result of : denied (no authenticated user yet), referer: https://token.domain.com/
[Thu Apr 22 21:56:57.577920 2021] [auth_openidc:debug] [pid 26044] src/mod_auth_openidc.c(3855): [client 137.160.241.108:19107] oidc_check_user_id: incoming request: "/mi/email.php?code=-9cMjspYGgdKUS7p2GVzgsdOo5eCTSkdvibkAAAAC", ap_is_initial_req(r)=1, referer: https://token.domain.com/
[Thu Apr 22 21:56:57.577938 2021] [auth_openidc:debug] [pid 26044] src/util.c(1271): [client 137.160.241.108:19107] oidc_util_request_matches_url: comparing "/mi/email.php"=="/mi/email.php", referer: https://token.domain.com/
[Thu Apr 22 21:56:57.577988 2021] [auth_openidc:debug] [pid 26044] src/cache/common.c(584): [client 137.160.241.108:19107] oidc_cache_get: enter: https://token.domain.com/.well-known/openid-configuration (section=o, decrypt=0, type=shm), referer: https://token.domain.com/
[Thu Apr 22 21:56:57.578026 2021] [auth_openidc:debug] [pid 26044] src/cache/common.c(618): [client 137.160.241.108:19107] oidc_cache_get: cache hit: return 4849 bytes from shm cache backend for key https://token.domain.com/.well-known/openid-configuration, referer: https://token.domain.com/
[Thu Apr 22 21:56:57.578259 2021] [auth_openidc:debug] [pid 26044] src/oauth.c(201): [client 137.160.241.108:19107] oidc_oauth_get_bearer_token: accept_token_in=4, referer: https://token.domain.com/
[Thu Apr 22 21:56:57.578335 2021] [auth_openidc:debug] [pid 26044] src/util.c(1595): [client 137.160.241.108:19107] oidc_util_read_form_encoded_params: read: code=-9cMjspYGgdKUS7pkFEGVzOo5eCTSkdvibkAAAAC, referer: https://token.domain.com/
[Thu Apr 22 21:56:57.578345 2021] [auth_openidc:debug] [pid 26044] src/util.c(1600): [client 137.160.241.108:19107] oidc_util_read_form_encoded_params: parsed: 45 bytes into 1 elements, referer: https://token.domain.com/
[Thu Apr 22 21:56:57.578359 2021] [auth_openidc:debug] [pid 26044] src/oauth.c(292): [client 137.160.241.108:19107] oidc_oauth_get_bearer_token: no bearer token found in the allowed methods: ['query'], referer: https://token.domain.com/
[Thu Apr 22 21:56:57.578370 2021] [auth_openidc:debug] [pid 26044] src/util.c(2483): [client 137.160.241.108:19107] oidc_util_hdr_err_out_add: WWW-Authenticate: Bearer error="invalid_request", error_description="No bearer token found in the request", referer: https://token.domain.com/