I’m working on integrating Okta into a Spring Boot webapp + Angular webapp. I’ve got the primary login with username/password and code challenge working. That’s been fairly easy. However, I’ve had to use redirects via a URL HTML window change vs. fully utilizing the OAuth2 flow. That has resulted in the webapp’s lack of session state. I’ve followed several of the Spring and JS examples, but I haven’t had much luck. I’m trying to utilize the API to close the gap. I have a Service Application in my Okta account and I’m using those credentials to access the Okta API. I’m able to utilize the User API (List All Users, for example), but not the Session API. Is there something I might not be enabling correctly in my Okta Service Application? I have the following grants and token:
okta.myAccount.sessions.manage
okta.sessions.manage
okta.sessions.read
My token privilege is:
Privilege / Role
Super Admin
Type
Okta API
I’ve used curl, Postman, and the Java API clients, but they all fail when I try to access the Session API. Thanks for your help!