My requirement is simple:
My application wants the list of groups that a user in Okta belongs to.
So for this, I have çreated a Service App in Okta, got the client_id and client_secret, and I am generating an access token for this app using grant_type as “client_credentials”.
The following is how my request looks like:
If you notice if we dont give a scope the call fails ( as default scope is not supported for client_credentials grant type).
So I define a custom scope under default authorization server, and I associate a claim type to this scope. Here is the screenshot of the claim that I created
Now if I use the above generated access token, and try hitting the following API:
I receive 403 Forbidden Error. Here is the screenshot:
I am sure it is related to some scope settings, which I am unable to fix. And why are the default scopes not working/supported for client_credentials grant type. Please help.