Looking into OKTA as a possible to solution for the following scenario.
We have Authenticated users in our web app who click create a ticket are then redirected to a salesforce community site, seamlessly (no request for authorization or consent)
-
Salesforce communities support both OIDC + SAML for sso.
-
Request is made to OIDC Server (OKTA) from front-end or backend, request to log into salesforce as a user
-
Server contacts SF auth flow, whether its OIDC or SAML 2.0 “hey this user wants to login”
-
Salesforce respond with token/assertion
-
Server responds with token
-
User is redirect to community site with token in header
-
User seamlessly lands on community page
Is this flow possible with Okta’s available APIs ?