davow (davow) asked a question.
Exposing Backend Apis, such that users can access them using postman/curl commands
Does okta provides support, such a way. it would generate auth keys for each users,
so these auth keys will be used by the client to invoke api calls on our dashboard, which doesnot require any signing on web browser.
here are req
- User should be able to create his own auth keys, each key must have tag name. (admin apis should be provided, so that we can contact okta and generate this auth keys whenever users requires them).
- Okta admin apis, should also give us the access to revoke the auth keys of users, whenever required.
- While deleting the users, respective auth keys created by user should be invalid.
Thanks
Hi @davow (davow) , Thank you for reaching out to the Okta Community!
Core OKTA API information can be located here:
https://developer.okta.com/docs/reference/core-okta-api/
The following articles go over the implementation and use in conjunction with POSTMAN.
https://support.okta.com/help/s/article/How-to-integrate-Postman-with-Okta?language=en_US
https://developer.okta.com/docs/reference/rest/
https://developer.okta.com/docs/reference/postman-collections/
https://developer.okta.com/docs/guides/create-an-api-token/main/
https://support.okta.com/help/s/article/How-do-I-create-an-API-token?language=en_US
https://help.okta.com/oie/en-us/content/topics/security/api.htm
You can also check the Admin permissions list to see Admin role permissions and restrictions:
https://help.okta.com/en-us/content/topics/security/administrators-admin-comparison.htm#APItokens
If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you.
Hope my answer helps!
--------------------------------
Ask the Experts: Okta Device Access Product Team Now Thru 3/22