Forgive me if this has been asked already but i cannot seem to find what i’m looking for.
I have created a React SPA that contains different pages; Home, Profile and Admin.
I’ve implemented a secure route to Profile and Admin, where everyone is able to access the profile page where it pulls the current user Info and displays it.
What i’m trying to do is block access to the admin page unless they’re assigned as admins in the directory. So once authenticated, if they click on the Admin page they’ll see some sort of access denied message if they’re not admins, and if they are then they’ll see a welcome admin message.
What do i need to do on OKTAS side to achieve this ? any documentation or help is greatly appreciated.