AdamM.01544 (Customer) asked a question.
Obtain Access tokens to access my Okta protected API
We have developed a React based WebApp that uses Okta for auth. The WebApp gets content via our NodeJS API that is secured using Okta JWT validation. Now we are required to allow users to directly call this API. i.e. allow users to get content via the Web App and/or the NodeJS API directly.
How can i allow my users to call the API? i am not sure on the best practice for users to obtain the required JWT to call the NodeJS API?
Ideally the users from our WebApp could generate an API token that could then be used to obtain JWT to call the API. But not sure if Okta supports this functionality ?
Hello @AdamM.01544 (Customer) Thank you for reacting out to our Community!
Please see our documentation on this matter below, which should provide the answer to your questions:
https://developer.okta.com/code/nodejs/
https://developer.okta.com/docs/guides/protect-your-api/nodeexpress/main/
If this does not answer your questions, my advice would be to leverage the Okta Developer forums for this type of questions and take advantage of their expertise.
https://devforum.okta.com/
The Okta Community Catalysts Program is now live. Collect online badges when you participate in the Okta Help Center Questions community. Learn more here.
I have read that article. It is very good at defining how to protect you API but is let down by having limited information on how to auth with the API. The use case in the article is to configure machine to machine API connections for your OKTA org. But how do i enable my Okta users to obtain long running api keys to access the API?