I’m very new to IAM and trying to work on a solution for my web app. Currently I have Okta User & Authentication API endpoints proxied through API Gateway. This gives me session token to work with but cannot control the user’s access to protected resources. I would like to step up the security with JWT tokens and granularize the access on resources for each user.
I tried to follow the okta documentation for OpenID Connect & OAuth 2.0 API but could not implement this. not sure what I’m missing.
I know LDAP has a provision for defining the protected resources and granularizing access but I don’t see how can I do this with Okta.