I am creating service clients for our 3rd party user apps to authenticate via client credentials on our app(okta client).
I want to secure our rest api interfaces in springboot with groups/role based auth via preAuthorize.
basically I want to add the non user client apps to user group and ensure that they have the correct rights when calling specific rest apis.
How can I achieve something of the sorts with Okta?
I was hoping that maybe the app can be added to a group and then have role based validation on it.
but some other app specific fields that can be checked via access_token would be fine as well.