Question to Okta gurus, I understand that user registration is not part of the Okta sign-in widget… yet… and Okta user registration API takes an API token as authorization token. My questions are…
Can we restrict the API token to be valid only for some APIs, like user registration only and cannot be used for other APIs?
Do we have any best practices on user registration flow?
Best practices on API token, etc.
Thanks for your help