I’m working in a project that contains 2 different apps (iOS Native App, DotNetCore Web App) and a middleware (also in dotnet).
Both apps need to login using Okta SDK and then call some endpoints in the middleware, that should take the access token and validate it also using the Okta SDK.
The problem is that i get different audiences from both apps…
in the iOS app i get
api://default but in the web app i get the ClientId and i can’t find a way to make both work.
What can i do to fix this? is it possible to override DefaultTokenValidationParameters in the SDK to disable Audience Validation?