Guides overview

Learn how to accomplish a task with step-by-step instructions.

Integrate authentication into your app

The following links outline what you need to know to successfully integrate authentication in to your app. The guides cover planning, designing, building, deploying, and troubleshooting apps that require user management, authentication, and API authorization.

If you're using Okta as an identity layer for the first time, start with How Okta Works and the Okta Data Model. Then, review the following guides.

1. Get the basics:

   • OAuth 2.0 and OpenID Connect overview
   • Authorization servers
   • Policies
   • Set up self-service registration

2. Sign users in:

   • Sign users in to your SPA using the redirect model
   • Sign users in to your web app using the redirect model
   • Auth JS fundamentals
   • Embedded Okta Sign-In Widget fundamentals
   • Configure a global session policy and app sign-in policies
   • Single Sign-On with external Identity Providers

3. Authorize:

   • Implement authorization by grant type
   • Configure SSO for native apps
   • Refresh access tokens
   • Validate access tokens
   • Validate ID tokens
   • Configure an access policy
   • Customize tokens returned from Okta with custom claims
   • Customize tokens returned from Okta with Groups claim
   • Customize tokens returned from Okta with a dynamic allowlist
   • Customize tokens returned from Okta with a static allowlist

4. Brand and customize:

   • Style the Sign-In Widget
   • Customize SMS messages
   • Customize a domain and email address
   • Customize email notifications and email domains

5. Deploy to production:

   • Pre-launch checklist
   • Deploy your app
   • Migrate to Okta

6. Automate management of your Okta org using Terraform:

   • Essentials
     • Terraform overview
     • Enable Terraform access for your Okta org
     • Control Terraform access to Okta
   • Create and manage resources
     • Manage groups of users with Terraform
     • Manage user access with Terraform
     • Manage external authentication services with Terraform
     • Manage device connection requirements
     • Create a custom authorization server
     • Manage branding with Terraform
     • Manage custom domains with Terraform
     • Import existing Okta objects into Terraform
   • Optimize your configuration
     • Minimize Terraform rate limit errors
     • Organize your configuration
     • Terraform syntax tips

7. Customize Okta process flows with event or inline hooks:

   • Event hook example
   • Token inline hook example
   • Password import inline hook example
   • Registration inline hook example

Publish an integration in the OIN

Partner integrations connect your app or service to our mutual customers. One of the most common integrations is Single Sign-On (SSO), which gives Okta users the ability to sign in directly to your application through Okta. Many partners also build provisioning integrations (using the SCIM protocol) to automate lifecycle management use cases for their customers. Integrations can also extend Okta functionality or integrate with your service in more complex ways.

You can publish your integration in the Okta Integration Network (OIN) catalog to expose your app to thousands of Okta Workforce customers.

If you're creating an Okta integration for the first time, Okta recommends the following sequence of guides:

1. OIN landing
2. Overview of Single Sign-On in the OIN
3. Overview of lifecycle management in the OIN
4. Overview of API service apps in the OIN
5. OIN submission requirements
6. Submit an app integration

Perform Identity Governance tasks through the API

Most Okta Identity Governance tasks are accomplished through the Admin Console for admins or the Okta End-User Dashboard for end users. However, you might want to perform the same UI tasks through a customized app or automated service using Okta APIs. In some cases, specific tasks and flows are only triggered through the API or other Okta apps, such as Workflows (opens new window). For these API uses cases, the following guides provide best practice implementation flows and examples for Okta Identity Governance subscribers:

• Access certifications
  • Launch a security access review