I have a use case that I can’t seem to find a good answer for. I have an app, and a few websites that all call .net c# API for SSO style authentication. Right now, the API uses Cognito, which returns a JWT token set upon authenticating the users and the API forwards the JWT token to the requesting client.
I’m exploring Okta as a replacement for Cognito, however; I cannot find a way for my custo API to authenticate the user via Okta and then return the JWT token to the requesting clients. I see there might be a way to do this via the Oauth 2.0 API (https://developer.okta.com/docs/reference/api/oidc/), but no way for my service application to get a JWT token set that’s user specific. To be clear, the authentication call will need to stay server to server. Any guidance would be greatly appreciated.