We have a use case where a consumer is authenticating via Okta SDK with IDX. The user is in a suspended status and when authenticating with UID/PW the response is the same as an incorrect UID/PW. Is there a way to know that the customer is in a suspended status to improve the customer experience? This is a SPA app so credentials are not possible to store and make a separate API call to Okta APIs. I would assume when trying to authenticate the response would tell us they are suspended and not have look like a failure to login. Is this by design for security purposes to not inform users of correct information?
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.