This guide goes through the steps of configuring Okta OAuth for Elements.

Setting up an Okta Application Integration

First, open Okta's website and sign in with the appropriate account to create and configure the Okta Elements Integration.

Elements will need 3 pieces of configuration to connect using this app. These are: OktaDomain, AppId and AppSecret.

The steps to create the integration:

  1.  After logging in, we see the following interface, click on the Admin button in the upper right corner.

  2. On the Admin interface, select the Applications menu item in the left menu, then Applications again.

  3. Click the Create App Integration button. In the pop-up window, select the OIDC - OpenID Connect, then in the Application type options that opens, select Web Application, then press the Next button.

  4. Give a name to the application integration.

  5. Enter the Redirect URI of the application integration, which is https://[your-elements-hostname]/api/account/oauth/callback/okta.

  6. Fill in the other settings options, then click Save.

  7. After saving the configuration, we can see the interface of the app integration. We will need the automatically generated Client ID and Client Secret later to configure Okta with Elements

    Configuring Elements to use Okta OAuth

    To configure Elements, open the appsettings.json located in the Elements application folder, then:

    1. Navigate to the LoginSettings section
    2. Set the AuthType to OAuth
    3. Navigate to the OAuthSettings section
    4. Set the OAuthType to Okta
    5. Fill out the Okta section with:
      1. OktaDomain
      2. AppId (Client ID from the Okta app integration)
      3. AppSecret (Client Secret from the Okta app integration)

    In the upper right corner, the domain can be seen by opening the menu item of the logged in user. (Don't forget to add the necessary https:// part to it.)

    appsettings.json part: