Can we force a full login using the okta SDK (re-auth)? Also, should we provide additional guidance to apps to enforce some sort of freshness for sensitive API operations?
Which Okta SDK(s) are you referring to?
Hello @erik ,
I am referring to Okta Auth JS SDK.