User17071808576007533785 (Customer) asked a question.
Hi, we've implemented Okta using the okta-react package in conjunction with the okta-jwt-verifier-python package. The frontend is sending requests, with access tokens attached to the headers, to the backend where a decorator implementing okta-jwt-verifier-python verifies the attached JWT before allowing the request to proceed. It works great.
What we want to do next is allow certain users direct access to our API through an SDK we're developing using some sort of token. We were thinking of using access tokens, however we can get them, since the decorator already works.
I've looked into generating access tokens with an Okta API token but that doesn't seem possible and this document (https://support.okta.com/help/s/article/How-to-get-tokens-for-an-OIDC-application-without-a-browser-using-curlPostman?language=en_US) has managed to confuse me. Where do I get the "code_verifier" value from?
Can we avoid passing credentials for our API users in any way and get something like an anonymous access token?
What are our options?
Hi @User17071808576007533785 (Customer) , Thank you for reaching out to the Okta Community!
This question is more appropriate for our dedicated Okta Developer Forum.
My advice would be to reach out via devforum.okta.com to take advantage of their expertise.
While we'll do our best to answer all of your questions here, this medium is more inclined towards Okta core products and features (non-developer work).
Regards.
--------------------------------
Ask the experts about Okta Privileged Access
Hi, thanks for the reply. I'm getting an error when trying to create a new account that too many accounts have been created from that IP address.
Sorry to hear that. Never heard of account creation issues being caused by the number of times an IP was used.
Are you using some kind of VPN?
Also, did you retry after a few minutes, in case you hit some rate limit? (although I’m not sure how that could happen via the account creation flow)
Company VPN. I assume we've created a number of accounts.
Understood.
Could you please email us at community@okta.com with your details (admin email, Okta org URL , VPN name and IP used) so we can look into the account creation issue?
In the meantime, if you have a paid account, please open a support ticket to assist you with the original question.
Regards.
--------------------------------
Ask the experts about Okta Privileged Access
It is Pkce, you can reference:
https://developer.okta.com/blog/2019/08/22/okta-authjs-pkce