7hli8 (7hli8) asked a question.
How to perform Authorization in SAML
I've build a SAML application in okta following https://help.okta.com/en-us/Content/Topics/Apps/Apps_App_Integration_Wizard_SAML.htm doc.
Is there a way to add scope and permission to this app, for ex - if I want some user to have access to resource A or some user to have read only access or some other combinations.
From what I know, I can assign this app to a user and then he has access to the application or I can add rule to assign it to users or groups of specific type. This is the only authorization piece that I found here.
Hello @7hli8 (7hli8) Thank you for reaching out to our Community!
You can use Custom attribute statements, and based on a specific attribute to give certain access/permissions within the application. To add Custom attributes to the SAML application please see our article below:
https://support.okta.com/help/s/article/How-to-define-and-configure-a-custom-SAML-attribute-statement?language=en_US
Hope this helps!