How to default Redirect to Login page and User.Claims coming empty after authentication

I have an existing Web Application ( C# and .net framework 4.7.2). The application is using default AuthenticationType ( DefaultAuthenticationTypes.ApplicationCookie )

I am trying to add okta as an additional authentication option (Single Sign On). So the application user can sign in either from application’s current login page or using okta. If user is not logged in, the application should redirect to application’s login page (not okta login page).

I have installed necessary libraries and able to do login with Okta, however this does not work smooth.

Code: (Startup.cs)

public void Configuration(IAppBuilder app)
private void EnablOkta(IAppBuilder app)
app.UseCookieAuthentication(new CookieAuthenticationOptions());

        app.UseOktaMvc(new OktaMvcOptions()
            OktaDomain = ConfigurationManager.AppSettings["okta:OktaDomain"],
            ClientId = ConfigurationManager.AppSettings["okta:ClientId"],
            ClientSecret = ConfigurationManager.AppSettings["okta:ClientSecret"],
            RedirectUri = ConfigurationManager.AppSettings["okta:RedirectUri"],
            PostLogoutRedirectUri = ConfigurationManager.AppSettings["okta:PostLogoutRedirectUri"],
            Scope = new List<string> { "openid", "profile", "email" },
            //LoginMode = LoginMode.SelfHosted,
        //Okta code Ends

To get User Claims, I use
var userClaims = HttpContext.GetOwinContext().Authentication.User.Claims;

Code Reference used:

(1) When application starts, it redirects to okta login page. It should redirect to the application’s default login page (Login page has option to use Okta)

(2) When I use user claims using HttpContext.GetOwinContext().Authentication.User.Claims; either I get user claims of the first user logged in or no claims.
UserA do login using Okta for the first time, it works good. UserA sign out and UserB do login using Okta, The application still gets UserClaims of UserA OR no user claims user

Thank you

For (1), it looks like you need to modify the Startup config as shown in:

For (2), it sounds like the first user might not be getting logged out correctly. Is the /logout request successful?

You might want to check out the sample app from

Thanks for the reply.
for (1) the solution worked and now I do not have default login page issue.

for (2), still login there are problems. It works only once. like for the first time I login from chrome using userA, then login is successful. When I try to login from other browser, I always get User.Identity.IsAuthenticated = false and HttpContext.GetOwinContext().Authentication.User.Claims are empty.

What could be wrong ?

Also, when login is done at okta and comes back to the website, sometimes I get The resource cannot be found. error for the /authorization-code/callback url. The weird thing is, this error does not come all the time!

Can someone please help.