I have question about the SSO implementation OKTA.
For OKTA we need to provide yourOktaDomain and a ClientID:
When comparing with other openid(fe: outlook) we have just one fixed url without clientid:
Is there a way to work with one fixed url as well?
The client_id parameter is not required to access the well-known. Including it just means that the data you get back (namely about things like the eligible grant types and token_endpoint_auth_method) will be specific to the client in question, but all the endpoints returned will be the same (for the same issuer), regardless of client.
Thanks for the respons.
and about the yourOktaDomain: is this client specific as well? there is no way we can just use one url for all our client(implementations)?
Can we use 1 yourOktaDomain for all implementations like https://login.microsoftonline.com/organizations/v2.0/.well-known/openid-configuration?
I just dont see any reply on that
The endpoint itself is only Authorization Server specific, so if all of your applications use the same authorization server, then yes, they would use the same well-known endpoint