okta-api | 易学教程

How login with okta oauth in new heroku app

阅读更多关于 How login with okta oauth in new heroku app

问题 I am using okta oauth in my express-node js app. When I deploy and run the new app in heroku and go through the login page I am getting 404 status code. For some reason, I’m not able to authenticate the legitime of my third part okta app. However, locally, it seems every things are working as expected. There is anyone of you can help and support it? Thx 来源： https://stackoverflow.com/questions/50648047/how-login-with-okta-oauth-in-new-heroku-app

Remember me with OAuth2 in SPA

阅读更多关于 Remember me with OAuth2 in SPA

问题 I know the concept of OAuth2 and OpenID. in our application authentication is happening through OKTA and we receive access-token in a response. Our architecture is a microservice-architecture and we are using EmberJS at frontend. we have to implement remember-me functionality it will keep the user logged in for the next 30 days. I did some study on it and came to points that will satisfy my requirements. keep user session active for 30 days in OKTA. refresh access token periodically based on

SAML Single logout through OKTA

阅读更多关于 SAML Single logout through OKTA

问题 I have got the following SP's Request and IDP's reponse: <samlp:LogoutRequest xmlns="urn:oasis:names:tc:SAML:2.0:metadata" Destination="https://dev-nnn.oktapreview.com/app/somename_hped800eportal_1/exk8dlkd0tCutHWlj0h7/slo/saml" ID="_af6eaa4a-9d5b-41ce-b265-d39dfdc5248e" Version="2.0" IssueInstant="2016-10-14T12:31:59Z" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer xmlns:saml="http://www.w3.org/2005/Atom">https://HPED800E:444/SynPortal/login.aspx</saml:Issuer><saml:NameID

Okta-api -Issue using Spring-security SAML with CSRF

阅读更多关于 Okta-api -Issue using Spring-security SAML with CSRF

问题 I have gone thru the steps listed in the document - https://developer.okta.com/blog/2017/03/16/spring-boot-saml#run-the-app-and-login-with-okta Everything works fine and I see SAML response getting generated and reditection happening to Application from OKTA but when the request reaches the application, I get this error- type=Forbidden, status=403). Invalid CSRF Token 'null' was found on the request parameter '_csrf' or header 'X-CSRF-TOKEN'. I have tried disabling csrf but then it goes in

Is there a way to limit an Okta token authority?

阅读更多关于 Is there a way to limit an Okta token authority?

问题 Following these abbreviated steps to generate an Okta token: Log in to your Developer Console Navigate to API > Tokens and click Create Token Give your token a name works wonderfully, however I'd like to limit the authority of such a token to only affect certain applications or perform only certain operations - is this possible? 回答1: API Tokens share the same rights as the admin that created them. If you wanted to create an API Token that had read-only access, for instance, you could follow

Okta SignIn Widget with SAML

阅读更多关于 Okta SignIn Widget with SAML

问题 We have a Single Web Page application developed with Spring Boot + AngularJS, and we want integrate Okta for the authentication part. I have created a developer account on the Okta website, and configured an application using SAML 2.0 Then I integrated the Okta Sign-in widget in an html page like this http://developer.okta.com/code/javascript/okta_sign-in_widget.html But I don’t know how to make the link between the sign-in widget and the idp saml metadata (https://dev-xxx.oktapreview.com/app

Okta sessions/me returning 404 when called from Javascript (Redux)

阅读更多关于 Okta sessions/me returning 404 when called from Javascript (Redux)

问题 I am trying to get the current session Object from Okta using the sessions/me endpoint called from Javascript (Redux action), but I get a not found response, even when I have an active session. It's not CORS related, I enabled CORS for my domain. The best I can tell is a cookie related issue. When I call sessions/me from the browser directly, I see the browser attaching multiple cookies to my request. When I call from javascript, there are no cookies attached to the request. Is there a way,

Okta Group Attributes

阅读更多关于 Okta Group Attributes

问题 I have two service providers that I am connecting to Okta in order to manage identities externally. Can you think of a way to configure Okta to accomplish the following: Associate attributes with groups, rather than directly to users. Users within groups would then inherit these attributes. Associate groups with applications, rather than directly associating users with applications. My end goal is to be able to leverage Okta for managing a role store for each service provider. I would expect

Okta sessions/me returning 404 when called from Javascript (Redux)

阅读更多关于 Okta sessions/me returning 404 when called from Javascript (Redux)

I am trying to get the current session Object from Okta using the sessions/me endpoint called from Javascript (Redux action), but I get a not found response, even when I have an active session. It's not CORS related, I enabled CORS for my domain. The best I can tell is a cookie related issue. When I call sessions/me from the browser directly, I see the browser attaching multiple cookies to my request. When I call from javascript, there are no cookies attached to the request. Is there a way, from Javascript to have access to the cookie needed for sessions/me to succeed? I'm guessing this is a

Create OKTA JIRA login with ruby

阅读更多关于 Create OKTA JIRA login with ruby

问题 I need to authenticate to JIRA using Okta via REST, how can I do that on ruby? It is possible? I never did that before, I just only want to get an attached file from a ticket in JIRA 回答1: It turns out that you can just send the JSESSIONID cookie from a logged-in user (such as yourself) to the REST API. You can get the cookie manually from the browser, or write a browser extension to get the cookie and then invoke your Ruby script with that cookie's value as a command-line argument. For Chrome