I’m having the same issue as this https://support.okta.com/help/answers?id=9062A000000XZogQAG
The signin widget has a active of ‘ACTIVE’ while a backend API call to
/api/v1/sessions/ says the status is ‘MFA_REQUIRED’
Here is the code:
The status is ‘ACTIVE’ here in the frontend : https://github.com/DavidWells/netlify-gated-sites/blob/master/okta/login-site-okta/src/App.js#L58
But when trying to verify server side it says the status is ‘MFA_REQUIRED’ here: https://github.com/DavidWells/netlify-gated-sites/blob/master/okta/login-site-okta/functions/verify-okta-session.js#L32
Whats going on here? How can I verify the session correctly?