91cb9 (91cb9) asked a question.
How to grant a custom scope to a single application?
Hey, I need to add an extra identifier to each application, so that the identifier is added to the JWT and that the value can only be added by that certain application. Our goal is to use Okta for storing integration client id/secrets using an application per customer, and we would want to get the actual customer id in the generated token.
I thought custom scopes would be a way of doing this, but I can't figure out how to deny other applications from granting access with that scope. Like managing Okta API Scopes but for my custom scope. Is this possible? If not, is there another way of adding custom attributes to Applications and mapping them to claims?
possible,
https://developer.okta.com/docs/guides/customize-authz-server/create-claims/
But claims are defined on the server, not application? They could be used to map fields from the application, but I still can't see how to add custom fields to the application.
you mean to say create attributes at application level.?if so, refer below.
https://help.okta.com/en/prod/Content/Topics/Directory/ad-agent-add-custom-attribute.htm