yb1mf (yb1mf) asked a question.
Okta Preview Sandbox "upsert certificate" endpoint returns 403
I can perform read actions just fine, such as retrieving domains and listing domains. But I cannot perform any delete/create (write) actions.
Some details:
- Service App uses Client Credentials grant flow with DPoP enabled.
- I see in the logs that the access token is being accepted when I run my unit tests.
- The domain has been created but not yet validated. I'm not trying to set up a live domain. I just want to test SSL certificate rotation. Am I required to validate the domain? EDIT: It seems the domain must be validated before a certificate can be deployed. Will post back if I have any further 403 errors.
- I sign and send the DPoP proof with the required PUT method in the htm claim along with the ath claim.
- endpoint looks like: https://mycompany-sandbox.oktapreview.com/api/v1/domains/26kd0osxseQFDM0h8OcD/certificate
- scope is set to okta.domains.read and okta.domains.manage
I get an ambiguous HTTP 403 response when attempting to upsert an SSL certificate. What could be my issue
Hi @yb1mf (yb1mf) , Thank you for reaching out to the Okta Community!
I've not seen any similar reported issues and the docs don't mention anything specific that might be missing from your implementation. The okta.domanis.manage scope should be enough to perform the operation.
My advice would be to reach out via devforum.okta.com to take advantage of their expertise. They are generally more versed in this type of implementations.
Regards.
--
Help others in the community by liking or hitting Select as Best if this response helped you.