dev-123456.okta.com
).Roe-AI SSO Integration App
).https://app.roe-ai.com/sso/callback
.Important: Store the Client Secret securely, as it will not be visible again.
openid
profile
email
offline_access
(if your platform supports refreshing tokens).https://<your-okta-domain>/oauth2/default/.well-known/openid-configuration
).<your-okta-domain>/oauth2/default/v1/authorize
<your-okta-domain>/oauth2/default/v1/token
<your-okta-domain>/oauth2/default/v1/userinfo
<your-okta-domain>
with your Okta organization domain (e.g., dev-123456.okta.com
).
Field | Value |
---|---|
OIDC Client ID | The Client ID retrieved from the Okta Admin Console. |
OIDC Client Secret | The Client Secret retrieved from the Okta Admin Console. |
OIDC Authorization Endpoint | The Authorization Endpoint URL retrieved from the metadata. |
OIDC Token Endpoint | The Token Endpoint URL retrieved from the metadata. |
OIDC User Info Endpoint | The User Info Endpoint URL retrieved from the metadata. |
OIDC User Identifier Key | sub |
OIDC User First Name Key | given_name |
OIDC User Last Name Key | family_name |
https://<your-okta-domain>/oauth2/default/v1/userinfo
) and validate the keys.