Introducing Okta Journeys: A Better Way for Developers to Learn Identity
Learning identity management is hard enough. Navigating Okta’s documentation to build something shouldn’t be. If you’ve ever lost an afternoon stitching together how-to guides, product docs, and scattered blog posts just to figure out where to start, you’re not alone – and we’ve heard you, loudly and repeatedly. Today, we’re excited to announce the official launch of Journeys: a new way to navigate Okta documentation built around the tasks you’re actually trying to accomplish. What...
How to Build and List Secure Cross App Access (XAA) Connections on Okta Integration Network (OIN)

AI agents have evolved from novelties into active participants in enterprise workflows. They now operate across systems, reading data, executing actions, and calling APIs on behalf of users. This evolution creates a new security hurdle for enterprises. Software and agents need to connect without relying on static API keys, scattered OAuth consent, or unmanaged integrations. Cross App Access (XAA) addresses this by bringing these connections under the enterprise identity layer. Table of Contents What is...
Enabling Cross App Access for SAML-Based Enterprise Apps

If you currently federate enterprise customers using Security Assertion Markup Language (SAML) and want to allow AI agents to access your API without migrating to OpenID Connect (OIDC), this Cross App Access (XAA) guide is for you. The Identity Assertion Authorization Grant specification, the basis of XAA, was originally designed with OIDC in mind. To use it in SAML applications, you must accommodate specific security and uniqueness requirements. This guide details what you need to...
The Builder Revolution: Why We're Shifting to Builder Advocacy

My team has officially changed its name, and it’s one I’ve been excited about for a while. My team is now Builder Advocacy, and our organization is now Builder Experience (BX). We were previously known as Developer Advocacy and Developer Success, respectively. On the surface, it might look like a simple rebranding. But it’s not. It’s a recognition of something that’s been happening in our industry for a while and has accelerated dramatically recently with...
How Verifiable Digital Credentials Are Reshaping Trust Architecture

The identity stack is getting a new layer, and it’s already in your users’ pockets. Mobile driver’s licenses are live in dozens of U.S. states. The EU is mandating digital identity wallets for hundreds of millions of citizens. Apple Wallet and Google Wallet already hold government-issued credentials. Yet most development teams are not building for it. The layer is called Verifiable Digital Credentials. The issuer infrastructure is already live, with wallets deployed and standards stable....
Long Story Short: I Found My Place Between Code and Community
Taylor Swift once said, “Sometimes walking out is one thing that will find you the right thing.” That’s probably what happened to me. During my engineering days, all I ever wanted was to be a backend engineer, write code all day, use dark mode for IDEs, and sip coffee. And it all happened, I started as a software developer focused on shipping features, debugging all night, and building new features again. However, something felt incomplete,...
Okta Developer Connect San Francisco 2026 Recap

“Building an agent is only half the battle. Governing it is where we get stuck.” That question came up in nearly every conversation we had with engineering managers leading up to Okta Developer Connect San Francisco. The second edition of our flagship developer event series brought more than 100 developers, architects, founders, platform engineers, and security leaders to Okta HQ on April 30 for an afternoon of technical sessions, hands-on labs, and community conversations on...
The One Where I Found My Way to DevRel

If you’ve watched Friends, you’ll know that life rarely goes according to plan. One day, you’re helping a friend move a couch while yelling “Pivot!”, and the next, you’re wondering how you ended up there in the first place. My career has felt a little like that. Growing up, I was always drawn to creative pursuits. You could usually find me with a book in hand, experimenting with calligraphy, sketching something random, writing poetry, baking...
How to Build Low-Code API Integrations for Enterprise Apps Using Okta

API Integration Actions are now available in Okta Integration Network (OIN) for Integrator Free Trial Orgs to build Provisioning, Entitlements, and Universal Logout applications. What are API Integration Actions? API Integration Actions are a feature that uses Workflows, Okta’s low-code builder, to enable independent software vendors (ISVs) to build Okta Integrations (Provisioning, Entitlements, Universal Logout) that are seamlessly invoked by Okta services — for example, retrieving and updating entitlements or triggering risk-based logout flows. You...
Develop a XAA-Enabled Resource Application and Test with Okta

From an enterprise resource app owner’s perspective, Cross App Access (XAA) is a game-changer because it allows their resources to be “AI-ready” without compromising on security. In the XAA model, resource apps rely on the enterprise’s Identity Provider (IdP) to manage access. Instead of building out interactive OAuth flows, they defer to the IdP to check enterprise policies and user groups, assign AI agent permissions, and log and audit AI agent requests as they occur....