Secure your API with OAuth, Mulesoft, and Okta in 20 minutes

Rob Temple

I’m confused as to why Mulesoft needs the authorization and token urls in the External Client configuration when the calling client application is what uses these. Does Mulesoft (which is the resource provider) actually use those urls?