Is it possible to force re-auth(force a full login using the okta SDK)

Can we force a full login using the okta SDK (re-auth)? Also, should we provide additional guidance to apps to enforce some sort of freshness for sensitive API operations?

Hello @Richard11,

Which Okta SDK(s) are you referring to?

Thank You,

Hello @erik ,

I am referring to Okta Auth JS SDK.

If you are doing a getWithRedirect() or getWithPopup() you can add the option of prompt=login.

authClient.token.getWithRedirect({ prompt: 'login' })

authorize option details.