Checking the permissions and role of an API token

If I have an API token, is there a GET request I can make to return the permissions and assigned role of the API token that was used to make the request?

there will be two GET requests involved to get this information

  1. get information about the user the token is used on behalf of [https://developer.okta.com/docs/reference/api/users/#get-current-user]

  2. get the admin roles of that user [https://developer.okta.com/docs/reference/api/roles/#list-roles-assigned-to-a-user]

2 Likes

Is there a GET request to list all users that are assigned an admin role?

@cb10
As per current APIs, this is only possible by enumerating through all Okta users and then for each user find the assigned admin roles.
https://developer.okta.com/docs/api/resources/roles

1 Like