Okta and Kong Konnect Part 3: Implementing Introspection Flow
In our third Kong and Okta tutorial, we’ll go through the introspection flow implementation. Learn more about Konnect and start a free trial: https://bit.ly/3vDuUBz
- Introspection Flow Overview (0:34)
- Set Up the Okta App (1:17)
- Apply OIDC (1:31)
- Test with Insomnia (2:29)
The introspection flow is part of the token validation process. Kong Gateway evaluates the injected token at the request processing time to see if it's still valid to the upstream services. The evaluation hits a specific Okta endpoint, passing the received token. Based on the response provided by Okta, Kong Gateway accepts or rejects the request.
Read the full tutorial blog post: https://bit.ly/3iyao1J
Contact us if you have any questions as you’re getting set up: https://support.konghq.com/support/s/
Once you’ve set up Konnect and Okta, you may find these other tutorials helpful:
- Automating Your Developer Pipeline With APIOps (DevOps + GitOps): https://bit.ly/3yPEsMa
- Service Design Guidelines Part 2: API Versioning: https://bit.ly/3pH0jB6
- “Gateway Mode” in Kuma and Kong Mesh: https://bit.ly/3ixLeQQ
#Okta #OIDC #API #OpenIDConnect #Konnect #APIsecurity #Introspection