Hello, I’m working on an API service integration app for the OIN. I would like to add the okta.orgs.read scope to my app but this is causing an error when I try to authorize it in my developer org for testing.
Here are the steps I’m doing:
- Create an API service app in the OIN manager.
- Add the required scopes (such as
okta.users.read, etc.) without theokta.orgs.readscope. - Click “Test in Okta” in the OIN manager.
- Click “Install & Authorize” in my developer okta tenant.
This all works successfully. However, when I add okta.orgs.read or okta.orgs.manage to the list of requested scopes and attempt to “Install & Authorize” in my developer tenant I get the following error.
Looking in the developer console the request made when I click to “Install & Authorize” the connection returns 400
{
"errorCode": "E0000001",
"errorSummary": "Api validation failed: grantedScopes",
"errorLink": "E0000001",
"errorId": "oaetn8leGTsQVSL0XU7FumToA"
}