Register your app

In this section, you'll learn how to hook up your Okta org to the app that's going to use it for sign-in.

For simplicity, we'll assume that your app is a server-side web app, rather than one of the other supported types of apps, and that you want to use the Okta-hosted sign-in page, rather than host the sign-in page yourself.

Start from a sample app

To start, find the example applications provided by Okta on GitHub for the language or framework you work in:

Framework Repository
ASP.Net https://github.com/okta/samples-aspnet (opens new window)
ASP.NET Core https://github.com/okta/samples-aspnetcore (opens new window)
ASP.Net Web Forms https://github.com/okta/samples-aspnet-webforms (opens new window)
Java Servlet https://github.com/okta/samples-java-servlet (opens new window)
Java Spring https://github.com/okta/samples-java-spring (opens new window)
Angular https://github.com/okta/samples-js-angular (opens new window)
React https://github.com/okta/samples-js-react (opens new window)
Vue https://github.com/okta/samples-js-vue (opens new window)
Golang https://github.com/okta/samples-golang (opens new window)
Node.js Express https://github.com/okta/samples-nodejs-express-4 (opens new window)
Python Flask https://github.com/okta/samples-python-flask (opens new window)
PHP https://github.com/okta/samples-php (opens new window)

Specifically, look for the okta-hosted-login example (there are samples provided for several use cases).

You can try building the example app as-is to start, or you can use it as a template for modifying your own app. When you have an app running, you're ready to connect it to your Okta org.

Tell Okta about the app

Instructions for

Get values from Okta to set in the app

In the Developer Console, gather the following information from your app's settings page:

  • Client ID: This is the public identifier for the client, which is required for all OAuth flows.

  • Client Secret: This is the secret used by the client to exchange an authorization code for a token. This must be kept confidential.

Remaining in Developer Console, go to API > Authorization Servers and gather the following value found on that page:

  • Issuer URI: This is the URI of the authorization server that will perform authentication. All Developer Accounts have a "default" authorization server you can use..

Set values in environment variables or configuration file

You now have the specific values for Client ID, Client Secret, and Issuer ID, which your app needs to use. The various example apps all provide ways of setting these values, but some of the example apps expect you to set environment variables, while some expect settings in a configuration file. Consult the README file for the example app you're using and set the three values.