There is insufficient logging of errors in Authentication Strategies such as Azure AD and Open ID Connect.
I have Azure AD and Open ID Connect authentication strategies with callbacks that produce error 500 but there is no code to actually log those errors anywhere, leaving no ability to troubleshoot.
A Dev Flag which logs all errors from Authentication Modules, similar to the LDAP one, would be useful.