<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D51Y0000770foHSAQOkta Classic EngineSingle Sign-OnAnswered2026-04-24T09:00:25.000Z2019-11-21T16:58:26.000Z2020-12-18T00:13:08.000Z

vuem9 (vuem9) asked a question.

November 21, 2019 at 4:58 PM
sessionCookieRedirect

We had a process that worked up until recently that allowed users to authenticate with Okta and grab their Okta application ids; the script logged the user into Okta, then used /login/sessionCookieRedirect to access /api/v1/users/$uid/appLinks (eg. - https://myurl.okta.com/login/sessionCookieRedirect?token=$OneTimeToken&redirectUrl=http://d2l.okta.com/api/v1/users/$uid/appLinks).

 

Not sure exactly when this started, but recently this started returning 403 forbidden response from Okta. Did something change with Okta login? Is this still supported?

 

 

 

  • 2 answers
  • 2.78K views

  • wge4v (wge4v)

    I'm late to the party but just in case anybody stumbles across this looking for an answer, a 403 on sessionCookieRedirect usually means that the "Redirect" parameter is not checked in the configuration for the target application in Trusted Origins. This flow looks at that setting to decide if the redirect is permitted.

This question is closed.
Loading
sessionCookieRedirect