We are trying to protect a ASP.Net Core web api using Okta. The front end will only be our customers api’s, no user UI front-end.
Using the machine-to-machine account work for me but I am unable to get the groups that the Application is in? As there can be 100’s of them, we don’t want to hard code all allowed client id’s or use a customer DB. Is there a supported way to get the Application groups?