<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00006rqZqKCAUOkta Classic EngineAdministrationAnswered2024-03-25T14:13:21.000Z2021-03-09T10:05:48.000Z2021-03-12T15:49:58.000Z

fpsrn (fpsrn) asked a question.

March 9, 2021 at 10:05 AM
Assign custom scopes to users or groups

I want to use Okta for authorization and authentication. I will create an Authorization Server which will authenticate people through an IDP.

From what I've read, the authorization server can have custom scopes and scopes are supposed to be the permissions and what something can do.

My question is if a scope can be assigned for a specific user or a group - for example, if I create a scope "can delete from db", can I tell the authorization server to issue me a token for a specific group with that scope and for another group a token without that scope?

I'm not even sure if a scope is something that is passed in the token and my service can read the scopes from the token and then decide if to allow the action the user is attempting, or if it works in a different way completely?

  • 1 answer
  • 1.05K views

  • Dennis (Okta)

    Hello MT User,

     

    Please open a support case and we can better assist you.

     

    Thank you,

This question is closed.
Loading
Assign custom scopes to users or groups