Add hard-won practical knowledge to the Okta notes (#6808)

This commit is contained in:
Martin Lee 2019-05-31 17:44:59 +01:00 committed by Jim Kalafut
parent 8f1eeda737
commit b7dadc11e6

View file

@ -65,3 +65,5 @@ Main reference: [Using OAuth 2.0 to Access Google APIs](https://developers.googl
1. Visit Applications > Add Application (Web).
1. Configure Login redirect URIs. Save.
1. Save client ID and secret.
Note your policy will need `oidc_scopes` to include `profile` to get a full profile ("[Fat Token](https://support.okta.com/help/s/article/Okta-Groups-or-Attribute-Missing-from-Id-Token)"). You will also need to configure bound audience along the lines of `"bound_audiences": ["api://default", "0a4........."]` if you are using the default authorization server.