BruceH.39291 (Customer) asked a question.
Using Okta in a multi-tenant system
I'm new to Okta. I managed to get user authentication working between my client and node server for a user (the default user added when I created the application). We are going to have multiple tenants, where we have one web portal, but connect to each tenants DB. We will want to manage users in each tenant (group?). My question is does groups handle our case? If not, how do I add tenants to my app?
In our case, we have a React web app talking to a Node server. Our Okta "App" is of type "SPA".
what type of tenant are you speaking about?
We are attempting to determine that. In okta, apparently the tenant is equivalent okta domain. In our case we have one app with multiple "organizations". We want to keep information between these organizations entirely separate, so that no one in one organization can view another. It's possible that okta user groups might handle this for us. It's possible that they won't. Also, we plan to use NGINX to route separate user domains to one central user domain - but at no time can the user know that they are not on their own domain.
Does that all make sense so far? Please feel free to ask for more clarification.
That helps. Most applications don't support multiple IDPs, in this case, being multiple okta orgs. You can tie the app to a single Okta Org and then setup an Org2Org relationship between that org and other Okta orgs, allowing you to 'pass' users from the other okta org 'through' to your application.
Thanks for your response. I will look into it. It may bring up additional questions 🙂