What is the best practice for configuring Okta when a team of developers are working on a web application that uses the Okta REST APIs for user authentication? Each developer needs to be able to execute user logon from the web application running on their local workstation for testing purposes. The developers have identical workstations that are running a IBM HTTP Server and WebSphere Application Server locally using the same domain name (localhost) and ports (80).
What are the access requirements for the developers regarding Okta? Do they require administrative permissions (eg. to add/update custom scopes and claims, apps), do they need API access?
The developers are executing API calls to authenticate users from the web application running on their local servers. No administrative permissions are required.