Okta User Permission Scopes

jmp493_nw · May 22, 2023, 8:56pm

I am using Okta’s API Access Management Solution to create an authorization server for users to authenticate against using their credentials.
In the Okta admin portal, I want to configure users to have different permission scopes (for example, I want some users to be able to read YYY-type data and other users to be able to read ZZZ-type data).

Once users have been granted an access token, and it is used on my Flask API server to access an endpoint, I want to be able to detect the scopes that a user has on my server and then execute conditional code blocks based on those scopes.

Does anybody know how I can go about setting up Okta to:

grant users different types of permission scopes
decipher the scopes a user has based on the access token sent to my API endpoints

Thanks!

alexedwards.ac · May 23, 2023, 12:11pm

Try using this.

Post		Replies	Views
Okta React Setup Questions	2	3263	February 6, 2024
Problem in generating OAuth token for Okta API scopes OAuth/OIDC	4	4936	February 12, 2024
/users/#{user_id}/factors endpoint returns 403 API	7	1699	August 29, 2023
API Access Management: How do you know what scopes to request from a custom app on behalf of an end-user based on their "role"? Questions	4	4516	February 8, 2024
Allow users to manage their own (or other) profiles? API oauth	3	2163	February 14, 2024

Okta User Permission Scopes

Related topics