Questions regarding Okta inline-hooks

Hi @akaduri75

For now, we do not have unfortunately an inline hook which would support your use-case - restricting access to applications. Currently, the SAML assertion inline hook allows SAML attributes modification before the assertion is generated, while the token inline hook is the equivalent for JWT tokens issued by Okta.

Regarding the examples from GitHub, an inline hook will work as follows:

  • if user achieves the use-case of the inline hook (accesses SAML application, requests an authorization for an OIDC application, registers through Self Service Registration option, imports users from a profile master), Okta will send a request to an external server hosted on your end and wait for a response
  • your server will answer with the specific commands for the inline hook
  • Okta reads the response, interprets it and takes actions based on it

Saying this, the examples provided in the GitHub repository can be hosted on any public resolvable domain, so that Okta can access them through the backend and read the commands.

The features mentioned in the README files need to be activated by Okta Support for your Okta tenant in order for the hook to be successfully used.

If you have any further questions, please let me know.