ShivankA.33244 (Customer) asked a question.
I want to integrate my SCIM apis with okta for user provisioning usecase. I want if a user exists on okta then the same should get created in my system using my SCIM apis. I have the SCIM apis ready which supports OAuth authentication with client credentials as grant type because I do not have a webapp. I only need to have the apis, so created them with client_credentials grant type.
I saw in FAQs of SCIM that okta only supports authorization code grant flow. So is there a way by which this can be supported?
Also I added an app integration using SCIM Oauth 2.0 template. But when I go to the provisioning tab, I see the option to add token only. And I coundn't see any option to provide the url from where the token can be fetched?
So is it like we can only add bearer token there.
The problem there is my token is only short-lived ie it expires after certain time. So is there a way by which okta can generate the token using my apis.
Can you please help me out here.
Thanks.
Hi Shivank,
Here's my two cents - the SCIM spec recommends using OAuth2 Bearer Token for authentication (which is one of the 3 options while configuring the SCIM provisioning). Also, in case you've not seen it, check this SCIM FAQ for more information.
-Jani
Hi @JaniK.29243 (Customer)
I created a template using SCIM 2.0 OAuth Bearer token. There I can only see option to pass token and base url. I did not understand how we can pass here the authorization server url, client id, etc for oauth authorization code flow to work.