JayV.21124 (Customer) asked a question.
I am trying to use the Dynamic Client Registration API to register some clients. For development/testing I am using SSWS API token that I generated via the OKTA admin portal for our organization.
I am using the sample postman collections that you have published in the API specification for Dynamic Client Registration API. I am able to create a new client via POST API, but if I try to create another client (different client_name) after that I am receiving an error
{
"error": "access_denied",
"error_description": "The resource owner or authorization server denied the request."
}
If I delete the previously created client, and then retry creating new client again, it works fine.
Is there a limit to how many clients can be created through this API? Is this rate limited somewhere?
Hello @JayV.21124 (Customer)
I hope you are having a great day
Thank you for posting, the link below shows the rate limit and more details about the Dynamic client registration API.
https://developer.okta.com/docs/reference/rate-limits/
If you need further assistance you can also feel free to post this question on our Okta Developer Forums: https://devforum.okta.com, this is a place for the Okta developer community to interact
Have a great day ahead
Okta Inc
@User16308869954358539580 (Okta) Thanks for quick feedback on this. I did look into this page, however I am not seeing any particular limit that would restrict creation of clients. It seems like I am able to create only one OAuth client at time (please see request body sample below).
Ex, this works fine when I call Create Client endpoint defined here: https://developer.okta.com/docs/reference/api/oauth-clients/#register-new-client
{
"client_name": "Test client 1",
"response_types": [
"token"
],
"grant_types": [
"client_credentials"
],
"token_endpoint_auth_method": "client_secret_basic",
"application_type": "service"
}
Then if I change client_name and try to create another client:
Ex.
{
"client_name": "Test client 2",
"response_types": [
"token"
],
"grant_types": [
"client_credentials"
],
"token_endpoint_auth_method": "client_secret_basic",
"application_type": "service"
}
I receive this error
{
"error": "access_denied",
"error_description": "The resource owner or authorization server denied the request."
}
Is there a reason I cannot create more than one OAuth client of this type (please note I am trying to create service client - client_credentials and response type is "token"). If I delete previously created client (client_name = 'Test client 1' in this example), the second client creation works.
So my question is why I am enable to create multiple clients through the API?