okta

问题 I am a newbie, I have setup my MVC application that will use okta for Authentication, trying to achieve using KentorIT, when the user isn't logged-In it redirects to Okta, and but Okta sent the response back, I am getting null in loginInfo object always. public async Task<ActionResult> ExternalLoginCallback(string returnUrl) { var loginInfo = await AuthenticationManager.GetExternalLoginInfoAsync(); if (loginInfo == null) { return RedirectToAction("Login"); } I have put my POC code at below

问题 I'm using Okta for user authentication of my SPA (+ Express backend). How can I use the Okta API to show/hide content based on group membership? e.g. if I want to show some menu items if the active user is a member of a specific group. Is there anything in the Okta React SDK? I'm coming up short, product seems great, docs seems less so. I've found this API https://developer.okta.com/docs/api/resources/users.html#get-member-groups I'm however unsure of how to best use this from my app. when

问题 I'm trying to integrate with Okta SSO by implementing SAML 2.0 in my website as Service Provider (SP) and Okta env. as my Identity Provider (IDP) I can't understand how to configure my IDP to return for each Auth request, the groups a user is in. How can it be done? Also, Is it possible to have service account in my IDP that my backend can ask the IDP directly if a user is inside some specific group? 回答1: It is possible to add groups to the SAMLResponse by configuring the SP App in the Okta

问题 I have followed the guide https://ultimatesecurity.pro/post/okta-saml/ , to configure OKTA Saml with keycloak. After this configuration, I see Okta/saml login button on login page, clicking on which, the user is redirected to Okta login/SSO. Now, is there a way to avoid clicking on this button everytime such that when the keycloak login page appears, user is auto redirected to Okta SSO automatically instead of shown keycloak login form with okta redirect button? If not, is it possible to

问题 We have a Java 8 backend application using SprintBoot with an embedded Jetty server. The UI for the application is a Single Page Application built using React. Currently I have enabled authentication by integrating with Okta using the spring security SAML extension. When the assertion is posted by Okta to my app, I create a session and the JSESSIONID is sent in the cookie. This was fine until now when we had a very simple UI serving few UI components. However, now we have several REST

问题 We have a spa (Angular 2) that we are trying to integrate with okta. I created an app in okta with SWA sign on method. I click on the app and it redirects me to my spa app as expected. However, I do not see and information being passed on the redirect. How do I validate that the login was successful? Is there some token info that I can validate? Something else? Thanks! 回答1: The SWA sign on method depends on the Okta plugin - do you have it installed? If so, when you hit your login page (and

问题 I am trying to setup the swagger authentication to the OKTA. But getting the error as invalid_scope","error_description":"Custom+scopes+are+not+allowed+for+this+request. Not sure how to resolve this issue. Here is my setup code public const string ResourceIdentifier = "id-gateway-api"; public void Configure(SwaggerGenOptions options) { foreach (var description in provider.ApiVersionDescriptions) { options.SwaggerDoc(description.GroupName, CreateInfoForApiVersion(description)); } options

问题 In Okta developer account I have enabled the SAML Single Logout and get Identity Provider Single Logout URL . I have created following logout request using NameID and SessionIndex obtained from SAML response that we get during single sign-on process. Logout Request : <?xml version="1.0" encoding="UTF-8"?> <samlp:LogoutRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://dev-6#####.oktapreview.com/app/nepasoftdev660864_spdemo_1/exk606bnr5BZOBF7z0h7/slo/saml" ID="

问题 I just signed up for a dev test account with Okta to test OIDC using Okta's auth service and user management. Using their management portal, I created a second group called Test Group along with the default group of Everyone and added my single user to both groups. I then added an application called My SPA and assigned the Test Group access to this application. Using the classic UI, I then edited the OpenID Connect ID Token section and set Group claims type to Expression and added groups as

问题 I am using the okta oAuth to do the authentication and authorization with angular 8 application. Since getting the 'https://dev-166545.okta.com/oauth2/aus1igd7yewoAs4xa357/.well-known/openid-configuration is causing the issue I have added the redirect URL in the okta trusted origin. I can't add the URLs in the CORS because of company policy. How can I solve the issue CORS Access to XMLHttpRequest at 'https://dev-166545.okta.com/oauth2/aus1igd7yewoAs4xa357/.well-known/openid-configuration'