We recently had problems with an application that is utilizing the APIs to pull filtered users, where they only received a portion of the users. The group they were filtering by had not changed in months, so we suspected an issue with the API calls they were making. Is there a way for our admins to see what calls they were making, if we know the token that was utilized?
Thank you for reaching out to Okta Support! Currently, Okta does not log the details for this type of calls (although there is information available for call such as set password or setting an application’s username format). Although we do not have the option in place, for logging these events, you can suggest this on the Okta Community by using the 'Submit an Idea' option from the Help &Support section, reachable from the upper right-hand corner of the Admin console. Features suggested in our community are reviewed and can be voted and commented on by other members of the community, therefore making it much easier for the engineering team to understand the priorities that you have for feature requests. From there, the PM team will review the top 30 most voted upon ideas each month and provide feedback/roadmap status on these via the forum.
Kind regards, Cristian Mondiru Technical Support Engineer