Okta

Okta is the workforce identity incumbent — its Identity Cloud platform (also called the Okta Workforce Identity Platform) covers Single Sign-On, Adaptive MFA, Universal Directory, Lifecycle Management, Identity Governance, Privileged Access, Device Access, Identity Threat Protection, Identity Security Posture Management, Access Gateway, and API Access Management. Customer identity is handled by Auth0, which Okta acquired in 2021 and now operates as its consumer-facing identity arm. The platform now extends to securing AI agents via Okta for AI Agents and the Cross-App Access (XAA) protocol — an emerging OAuth profile based on the IETF ID-JAG draft for agent-to-app authorization. The Okta Management API is the primary developer surface, with an official MCP server (okta-mcp-server) exposing administrative operations to LLM agents under human-in-the-loop confirmation.

3 APIs 19 Features
IdentityWorkforce IdentityCustomer IdentityAuthenticationAuthorizationSingle Sign-OnMulti-Factor AuthenticationIdentity GovernancePrivileged AccessAI AgentsCross-App AccessMCPPlatform

APIs

Okta API

The Okta Management API is the unified identity and access management interface for the Okta Workforce Identity Platform. It allows developers to integrate authentication, autho...

Cross-App Access (XAA)

Cross-App Access is Okta's emerging OAuth profile for secure agent-to-app and app-to-app authorization, based on the IETF draft "OAuth Identity Assertion Authorization Grant" (I...

Okta for AI Agents

Okta for AI Agents secures the full lifecycle of AI agents — discovery, registration with mandatory human ownership, least-privilege scope enforcement, runtime monitoring, and i...

Collections

Okta API

POSTMAN

Arazzo Workflows

Okta Assign Admin Role to Group

Assign an administrator role to a group and verify the assignment.

ARAZZO

Okta Assign Admin Role to User

Assign an administrator role to a user and verify the assignment.

ARAZZO

Okta Assign Group to Application

Find a group by name and assign it to an application for bulk access.

ARAZZO

Okta Create and Activate Application

Create an application in INACTIVE state and then activate it.

ARAZZO

Okta Create and Activate Authenticator

Add an authenticator to the org and activate it for enrollment.

ARAZZO

Okta Create and Activate Group Rule

Create a dynamic group rule and activate it so it begins evaluating.

ARAZZO

Okta Create and Refresh Session

Create a session from a session token and extend its lifetime.

ARAZZO

Okta Create Application, Assign User, and Activate

Create an application, assign a user to it, then activate the application.

ARAZZO

Okta Create Group and Add Members

Create a new Okta group and add two users to it.

ARAZZO

Okta Create Policy with Rule and Activate

Create a policy, add a rule to it, and activate the policy.

ARAZZO

Okta Create User with Group Membership

Create a user pre-seeded with groups, then verify their memberships.

ARAZZO

Okta Deactivate and Delete User

Deactivate a user and then permanently delete the deprovisioned account.

ARAZZO

Okta Enroll and Activate User Factor

Enroll an MFA factor for a user and activate it with a passcode.

ARAZZO

Okta Find User and Assign Application

Look up a user by login and assign them to an application if found.

ARAZZO

Okta Find User and Suspend

Look up a user by login and suspend them if an active match exists.

ARAZZO

Okta Offboard User and Clear Sessions

Suspend a user and clear all of their active sessions.

ARAZZO

Okta Onboard User to Group and Application

Create a user, add them to a group, then assign them to an application.

ARAZZO

Okta Provision Admin User

Create a user and immediately grant them an administrator role.

ARAZZO

Okta Restore Suspended User

Unsuspend a user and verify they are returned to an active state.

ARAZZO

Okta Reset and Re-enroll User Factor

Reset all of a user's MFA factors and enroll a fresh factor.

ARAZZO

Okta Update Group Rule Expression

Deactivate a group rule, update its expression, then reactivate it.

ARAZZO

GraphQL

Okta GraphQL Schema

Okta does not currently expose a public GraphQL API endpoint. The platform's primary developer surface is the Okta Management REST API, supplemented by the Events API (AsyncAPI)...

GRAPHQL

Pricing Plans

Okta Plans Pricing

6 plans

PLANS

Rate Limits

Okta Rate Limits

5 limits

RATE LIMITS

FinOps

Okta Finops

FINOPS

Features

Workforce Identity Starter at $6/user/mo: SSO + MFA + Universal Directory + 5 Workflows ($1,500/yr minimum)
Core Essentials at $14/user/mo: Adaptive MFA, Privileged Access, Lifecycle Mgmt, Access Governance
Essentials at $17/user/mo: All Core Essentials + 50 Workflows
Professional: Device Access, ISPM, Identity Threat Protection, Sandbox, Unlimited Workflows (custom pricing)
Enterprise: API Access Management, Access Gateway, M2M Tokens (custom pricing)
Customer Identity (Auth0) Enterprise Base: $3K/mo base + B2C / B2B suites
Default rate limits 600 req/min on most endpoints
OAuth /token at 1,000 req/min
System Log endpoint capped at 120 req/min
Protocols: OIDC, SAML, WS-Fed, SCIM
Universal Directory with custom attributes
Workflows for no-code automation (5 / 50 / unlimited by SKU)
Adaptive MFA with risk-based policies
Identity Threat Protection (Professional+)
Identity Security Posture Management (Professional+)
API Access Management (Enterprise) — OAuth as a Service
Okta for AI Agents: agent discovery, registration, ownership, least-privilege, revocation
Cross-App Access (XAA): OAuth ID-JAG draft for agent-to-app authorization
Okta MCP Server: Python, LLM-facing admin CRUD with confirmation gates

Event Specifications

Okta Event Hooks and Log Streams

AsyncAPI description of Okta's two outbound event delivery surfaces: 1. **Event Hooks** — Okta POSTs a CloudEvents-style envelope to a customer-owned HTTPS endpoint whenever a s...

ASYNCAPI

Semantic Vocabularies

Okta Context

30 classes · 15 properties

JSON-LD

API Governance Rules

Okta API Rules

10 rules · 4 errors 5 warnings 1 info

SPECTRAL

JSON Structure

Okta Structure

0 properties

JSON STRUCTURE

Okta User Structure

0 properties

JSON STRUCTURE

Example Payloads

Okta Application Oidc Example

12 fields

EXAMPLE

Okta Group Example

8 fields

EXAMPLE

Okta User Active Example

12 fields

EXAMPLE

Resources

🔗
PostmanWorkspace
PostmanWorkspace
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
Arazzo
Arazzo
🔗
LinkedIn
LinkedIn
🔗
Website
Website
🌐
Portal
Portal
🔗
Documentation
Documentation
🔑
Authentication
Authentication
👥
GitHubOrganization
GitHubOrganization
🟢
StatusPage
StatusPage
💬
Support
Support
🔗
Concepts
Concepts
🔗
Guides
Guides
📦
SDKs
SDKs
📄
ChangeLog
ChangeLog
🔗
Login
Login
📝
Signup
Signup
📰
Blog
Blog
🔗
Plans
Plans
🔗
Forums
Forums
📜
TermsOfService
TermsOfService
📜
PrivacyPolicy
PrivacyPolicy
🔗
OpenIntegrationNetwork
OpenIntegrationNetwork
🔗
MCPServer
MCPServer
🔗
CLI
CLI
🔗
CLI
CLI
🔗
Terraform
Terraform
🔗
Terraform
Terraform
🔗
OpenAPISource
OpenAPISource
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📝
DesignSystem
DesignSystem
🔗
Samples
Samples
🔗
Samples
Samples
🔗
Sandbox
Sandbox

Sources

Raw ↑
info:
  _postman_id: 18d073a6-c63c-4b76-a018-3073be778919
  name: Okta API
  description: "Allows customers to easily access the Okta API\n\nContact Support:\n Name: Okta Developer Team\n Email: devex-public@okta.com"
  schema: https://schema.getpostman.com/json/collection/v2.1.0/collection.json
  createdAt: '2026-06-05T13:16:35.000Z'
  updatedAt: '2026-06-05T13:16:37.000Z'
  lastUpdatedBy: '35240'
  uid: 35240-18d073a6-c63c-4b76-a018-3073be778919
item:
- name: api
  item:
  - name: v1
    item:
    - name: apps
      item:
      - name: '{appId}'
        item:
        - name: connections
          item:
          - name: default
            item:
            - name: lifecycle
              item:
              - name: activate
                item:
                - name: Okta Activate default Provisioning Connection for application
                  id: 61262af2-567d-4bc2-8480-2db67f3241c0
                  protocolProfileBehavior:
                    disableBodyPruning: true
                  request:
                    auth:
                      type: apikey
                      apikey:
                      - key: key
                        value: Authorization
                        type: string
                      - key: value
                        value: '{{apiKey}}'
                        type: string
                      - key: in
                        value: header
                        type: string
                    method: POST
                    header: []
                    url:
                      raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default/lifecycle/activate'
                      host:
                      - '{{baseUrl}}'
                      path:
                      - api
                      - v1
                      - apps
                      - :appId
                      - connections
                      - default
                      - lifecycle
                      - activate
                      variable:
                      - id: 791f4042-c1fb-4a1e-9496-719c1c8ce872
                        key: appId
                        value: <string>
                        description: '(Required) '
                    description: Activates the default Provisioning Connection for an application.
                  response:
                  - id: da0452ac-3a62-4beb-9ba6-62dff93db36c
                    name: No Content
                    originalRequest:
                      method: POST
                      header:
                      - description: 'Added as a part of security scheme: apikey'
                        key: Authorization
                        value: <API Key>
                      url:
                        raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default/lifecycle/activate'
                        host:
                        - '{{baseUrl}}'
                        path:
                        - api
                        - v1
                        - apps
                        - :appId
                        - connections
                        - default
                        - lifecycle
                        - activate
                        variable:
                        - key: appId
                    status: No Content
                    code: 204
                    _postman_previewlanguage: text
                    header: []
                    cookie: []
                    responseTime: null
                    body: null
                    createdAt: '2026-06-05T13:16:37.000Z'
                    updatedAt: '2026-06-05T13:16:37.000Z'
                    uid: 35240-da0452ac-3a62-4beb-9ba6-62dff93db36c
                  - id: 22caa040-9ad5-47be-b592-0877b67fec23
                    name: Not Found
                    originalRequest:
                      method: POST
                      header:
                      - description: 'Added as a part of security scheme: apikey'
                        key: Authorization
                        value: <API Key>
                      url:
                        raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default/lifecycle/activate'
                        host:
                        - '{{baseUrl}}'
                        path:
                        - api
                        - v1
                        - apps
                        - :appId
                        - connections
                        - default
                        - lifecycle
                        - activate
                        variable:
                        - key: appId
                    status: Not Found
                    code: 404
                    _postman_previewlanguage: text
                    header: []
                    cookie: []
                    responseTime: null
                    body: null
                    createdAt: '2026-06-05T13:16:37.000Z'
                    updatedAt: '2026-06-05T13:16:37.000Z'
                    uid: 35240-22caa040-9ad5-47be-b592-0877b67fec23
                  createdAt: '2026-06-05T13:16:36.000Z'
                  updatedAt: '2026-06-05T13:16:36.000Z'
                  uid: 35240-61262af2-567d-4bc2-8480-2db67f3241c0
                id: 411ba096-8ec8-4739-92a1-8a8c139c15c1
                createdAt: '2026-06-05T13:16:36.000Z'
                updatedAt: '2026-06-05T13:16:36.000Z'
                uid: 35240-411ba096-8ec8-4739-92a1-8a8c139c15c1
              - name: deactivate
                item:
                - name: Okta Deactivate default Provisioning Connection for application
                  id: 86a5aea1-0240-4266-9a91-ee48c7d19353
                  protocolProfileBehavior:
                    disableBodyPruning: true
                  request:
                    auth:
                      type: apikey
                      apikey:
                      - key: key
                        value: Authorization
                        type: string
                      - key: value
                        value: '{{apiKey}}'
                        type: string
                      - key: in
                        value: header
                        type: string
                    method: POST
                    header: []
                    url:
                      raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default/lifecycle/deactivate'
                      host:
                      - '{{baseUrl}}'
                      path:
                      - api
                      - v1
                      - apps
                      - :appId
                      - connections
                      - default
                      - lifecycle
                      - deactivate
                      variable:
                      - id: 779d0751-8e40-4df7-9862-a74c4b60a662
                        key: appId
                        value: <string>
                        description: '(Required) '
                    description: Deactivates the default Provisioning Connection for an application.
                  response:
                  - id: 39a021d2-cea3-4305-a2a2-03eb23d6ea57
                    name: No Content
                    originalRequest:
                      method: POST
                      header:
                      - description: 'Added as a part of security scheme: apikey'
                        key: Authorization
                        value: <API Key>
                      url:
                        raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default/lifecycle/deactivate'
                        host:
                        - '{{baseUrl}}'
                        path:
                        - api
                        - v1
                        - apps
                        - :appId
                        - connections
                        - default
                        - lifecycle
                        - deactivate
                        variable:
                        - key: appId
                    status: No Content
                    code: 204
                    _postman_previewlanguage: text
                    header: []
                    cookie: []
                    responseTime: null
                    body: null
                    createdAt: '2026-06-05T13:16:37.000Z'
                    updatedAt: '2026-06-05T13:16:37.000Z'
                    uid: 35240-39a021d2-cea3-4305-a2a2-03eb23d6ea57
                  - id: 6c84aa17-c72e-4034-ac7a-7832d03d4e52
                    name: Not Found
                    originalRequest:
                      method: POST
                      header:
                      - description: 'Added as a part of security scheme: apikey'
                        key: Authorization
                        value: <API Key>
                      url:
                        raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default/lifecycle/deactivate'
                        host:
                        - '{{baseUrl}}'
                        path:
                        - api
                        - v1
                        - apps
                        - :appId
                        - connections
                        - default
                        - lifecycle
                        - deactivate
                        variable:
                        - key: appId
                    status: Not Found
                    code: 404
                    _postman_previewlanguage: text
                    header: []
                    cookie: []
                    responseTime: null
                    body: null
                    createdAt: '2026-06-05T13:16:37.000Z'
                    updatedAt: '2026-06-05T13:16:37.000Z'
                    uid: 35240-6c84aa17-c72e-4034-ac7a-7832d03d4e52
                  createdAt: '2026-06-05T13:16:36.000Z'
                  updatedAt: '2026-06-05T13:16:36.000Z'
                  uid: 35240-86a5aea1-0240-4266-9a91-ee48c7d19353
                id: aac3bd85-d315-4312-a1ba-6ccdaa55d097
                createdAt: '2026-06-05T13:16:36.000Z'
                updatedAt: '2026-06-05T13:16:36.000Z'
                uid: 35240-aac3bd85-d315-4312-a1ba-6ccdaa55d097
              id: 7fa7b5fd-99b7-40f4-8bf2-c784129a3f08
              createdAt: '2026-06-05T13:16:36.000Z'
              updatedAt: '2026-06-05T13:16:36.000Z'
              uid: 35240-7fa7b5fd-99b7-40f4-8bf2-c784129a3f08
            - name: Okta Fetches the default Provisioning Connection for an application.
              id: 47dc7082-49f8-468e-9925-2928a1efa6f0
              protocolProfileBehavior:
                disableBodyPruning: true
              request:
                auth:
                  type: apikey
                  apikey:
                  - key: key
                    value: Authorization
                    type: string
                  - key: value
                    value: '{{apiKey}}'
                    type: string
                  - key: in
                    value: header
                    type: string
                method: GET
                header:
                - key: Accept
                  value: application/json
                url:
                  raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default'
                  host:
                  - '{{baseUrl}}'
                  path:
                  - api
                  - v1
                  - apps
                  - :appId
                  - connections
                  - default
                  variable:
                  - id: 4ffc48aa-6d83-4ebe-b3d8-027891337314
                    key: appId
                    value: <string>
                    description: '(Required) '
                description: Get default Provisioning Connection for application
              response:
              - id: 9f40a01e-4704-433e-95b6-4cc609d92698
                name: Success
                originalRequest:
                  method: GET
                  header:
                  - key: Accept
                    value: application/json
                  - description: 'Added as a part of security scheme: apikey'
                    key: Authorization
                    value: <API Key>
                  url:
                    raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default'
                    host:
                    - '{{baseUrl}}'
                    path:
                    - api
                    - v1
                    - apps
                    - :appId
                    - connections
                    - default
                    variable:
                    - key: appId
                status: OK
                code: 200
                _postman_previewlanguage: json
                header:
                - key: Content-Type
                  value: application/json
                cookie: []
                responseTime: null
                body: "{\n  \"_links\": {\n    \"aliquip_aa\": {},\n    \"commodo_6\": {}\n  },\n  \"authScheme\": \"UNKNOWN\"\
                  ,\n  \"status\": \"UNKNOWN\"\n}"
                createdAt: '2026-06-05T13:16:37.000Z'
                updatedAt: '2026-06-05T13:16:37.000Z'
                uid: 35240-9f40a01e-4704-433e-95b6-4cc609d92698
              - id: 8a6f62f9-4562-45f0-b807-7fe17db48137
                name: Not Found
                originalRequest:
                  method: GET
                  header:
                  - description: 'Added as a part of security scheme: apikey'
                    key: Authorization
                    value: <API Key>
                  url:
                    raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default'
                    host:
                    - '{{baseUrl}}'
                    path:
                    - api
                    - v1
                    - apps
                    - :appId
                    - connections
                    - default
                    variable:
                    - key: appId
                status: Not Found
                code: 404
                _postman_previewlanguage: text
                header: []
                cookie: []
                responseTime: null
                body: null
                createdAt: '2026-06-05T13:16:37.000Z'
                updatedAt: '2026-06-05T13:16:37.000Z'
                uid: 35240-8a6f62f9-4562-45f0-b807-7fe17db48137
              createdAt: '2026-06-05T13:16:36.000Z'
              updatedAt: '2026-06-05T13:16:36.000Z'
              uid: 35240-47dc7082-49f8-468e-9925-2928a1efa6f0
            - name: Okta Sets the default Provisioning Connection for an application.
              id: 39a69496-3471-4e70-b71a-d074f263a019
              protocolProfileBehavior:
                disableBodyPruning: true
              request:
                auth:
                  type: apikey
                  apikey:
                  - key: key
                    value: Authorization
                    type: string
                  - key: value
                    value: '{{apiKey}}'
                    type: string
                  - key: in
                    value: header
                    type: string
                method: POST
                header:
                - key: Content-Type
                  value: application/json
                - key: Accept
                  value: application/json
                body:
                  mode: raw
                  raw: "{\n  \"profile\": {\n    \"authScheme\": \"TOKEN\",\n    \"token\": \"<string>\"\n  }\n}"
                  options:
                    raw:
                      headerFamily: json
                      language: json
                url:
                  raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default?activate=<boolean>'
                  host:
                  - '{{baseUrl}}'
                  path:
                  - api
                  - v1
                  - apps
                  - :appId
                  - connections
                  - default
                  query:
                  - key: activate
                    value: <boolean>
                  variable:
                  - id: dd5d0159-bfaf-4bab-b866-aa87700f2d10
                    key: appId
                    value: <string>
                    description: '(Required) '
                description: Set default Provisioning Connection for application
              response:
              - id: c6cfea07-283b-41eb-ae50-2d6454a7c062
                name: Created
                originalRequest:
                  method: POST
                  header:
                  - key: Content-Type
                    value: application/json
                  - key: Accept
                    value: application/json
                  - description: 'Added as a part of security scheme: apikey'
                    key: Authorization
                    value: <API Key>
                  body:
                    mode: raw
                    raw: "{\n  \"profile\": {\n    \"authScheme\": \"TOKEN\",\n    \"token\": \"<string>\"\n  }\n}"
                    options:
                      raw:
                        headerFamily: json
                        language: json
                  url:
                    raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default?activate=<boolean>'
                    host:
                    - '{{baseUrl}}'
                    path:
                    - api
                    - v1
                    - apps
                    - :appId
                    - connections
                    - default
                    query:
                    - key: activate
                      value: <boolean>
                    variable:
                    - key: appId
                status: Created
                code: 201
                _postman_previewlanguage: json
                header:
                - key: Content-Type
                  value: application/json
                cookie: []
                responseTime: null
                body: "{\n  \"_links\": {\n    \"aliquip_aa\": {},\n    \"commodo_6\": {}\n  },\n  \"authScheme\": \"UNKNOWN\"\
                  ,\n  \"status\": \"UNKNOWN\"\n}"
                createdAt: '2026-06-05T13:16:37.000Z'
                updatedAt: '2026-06-05T13:16:37.000Z'
                uid: 35240-c6cfea07-283b-41eb-ae50-2d6454a7c062
              - id: 76725661-59d2-47f4-9387-0f4f8e9b62da
                name: Bad Request
                originalRequest:
                  method: POST
                  header:
                  - key: Content-Type
                    value: application/json
                  - description: 'Added as a part of security scheme: apikey'
                    key: Authorization
                    value: <API Key>
                  body:
                    mode: raw
                    raw: "{\n  \"profile\": {\n    \"authScheme\": \"TOKEN\",\n    \"token\": \"<string>\"\n  }\n}"
                    options:
                      raw:
                        headerFamily: json
                        language: json
                  url:
                    raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default?activate=<boolean>'
                    host:
                    - '{{baseUrl}}'
                    path:
                    - api
                    - v1
                    - apps
                    - :appId
                    - connections
                    - default
                    query:
                    - key: activate
                      value: <boolean>
                    variable:
                    - key: appId
                status: Bad Request
                code: 400
                _postman_previewlanguage: text
                header: []
                cookie: []
                responseTime: null
                body: null
                createdAt: '2026-06-05T13:16:37.000Z'
                updatedAt: '2026-06-05T13:16:37.000Z'
                uid: 35240-76725661-59d2-47f4-9387-0f4f8e9b62da
              - id: d8d876a1-20cc-4eac-adb1-cb21368bc5cf
                name: Not Found
                originalRequest:
                  method: POST
                  header:
                  - key: Content-Type
                    value: application/json
                  - description: 'Added as a part of security scheme: apikey'
                    key: Authorization
                    value: <API Key>
                  body:
                    mode: raw
                    raw: "{\n  \"profile\": {\n    \"authScheme\": \"TOKEN\",\n    \"token\": \"<string>\"\n  }\n}"
                    options:
                      raw:
                        headerFamily: json
                        language: json
                  url:
                    raw: '{{baseUrl}}/api/v1/apps/:appId/connections/default?activate=<boolean>'
                    host:
                    - '{{baseUrl}}'
                    path:
                    - api
                    - v1
                    - apps
                    - :appId
                    - connections
                    - default
                    query:
                    - key: activate
                      value: <boolean>
                    variable:
                    - key: appId
                status: Not Found
                code: 404
                _postman_previewlanguage: text
                header: []
                cookie: []
                responseTime: null
                body: null
                createdAt: '2026-06-05T13:16:37.000Z'
                updatedAt: '2026-06-05T13:16:37.000Z'
                uid: 35240-d8d876a1-20cc-4eac-adb1-cb21368bc5cf
              createdAt: '2026-06-05T13:16:36.000Z'
              updatedAt: '2026-06-05T13:16:36.000Z'
              uid: 35240-39a69496-3471-4e70-b71a-d074f263a019
            id: 56ce54a6-2784-4db0-acfe-5442a38283f7
            createdAt: '2026-06-05T13:16:36.000Z'
            updatedAt: '2026-06-05T13:16:36.000Z'
            uid: 35240-56ce54a6-2784-4db0-acfe-5442a38283f7
          id: 9c435284-3ec1-48e9-8f02-388ea6cb0b25
          createdAt: '2026-06-05T13:16:36.000Z'
          updatedAt: '2026-06-05T13:16:36.000Z'
          uid: 35240-9c435284-3ec1-48e9-8f02-388ea6cb0b25
        - name: credentials
          item:
          - name: csrs
            item:
            - name: '{csrId}'
              item:
              - name: lifecycle
                item:
                - name: publish
                  item:
                  - name: /api/v1/apps/:appId/credentials/csrs/:csrId/lifecycle/publish
                    id: f26f3a7c-435e-44f0-be89-a82db0e95f78
                    protocolProfileBehavior:
                      disableBodyPruning: true
                    request:
                      auth:
                        type: apikey
                        apikey:
                        - key: key
                          value: Authorization
                          type: string
                        - key: value
                          value: '{{apiKey}}'
                          type: string
                        - key: in
                          value: header
                          type: string
                      method: POST
                      header:
                      - key: Accept
                        value: application/json
                      url:
                        raw: '{{baseUrl}}/api/v1/apps/:appId/credentials/csrs/:csrId/lifecycle/publish'
                        host:
                        - '{{baseUrl}}'
                        path:
                        - api
                        - v1
                        - apps
                        - :appId
                        - credentials
                        - csrs
                        - :csrId
                        - lifecycle
                        - publish
                        variable:
                        - id: 916c932c-b12a-4710-9cc7-11acd545a4e3
                          key: appId
                          value: <string>
                          description: '(Required) '
                        - id: da949379-b246-48f9-ba83-d2222fdc0847
                          key: csrId
                          value: <string>
                          description: '(Required) '
                    response:
                    - id: 8fe8e1e4-00d7-481e-bddb-6d5440801981
                      name: Created
                      originalRequest:
                        method: POST
                        header:
                        - key: Accept
                          value: application/json
                        - description: 'Added as a part of security scheme: apikey'
                          key: Authorization
                          value: <API Key>
                        url:
                          raw: '{{baseUrl}}/api/v1/apps/:appId/credentials/csrs/:csrId/lifecycle/publish'
                          host:
                          - '{{baseUrl}}'
                          path:
                          - api
                          - v1
                          - apps
                          - :appId
                          - credentials
                          - csrs
                          - :csrId
                          - lifecycle
                          - publish
                          variable:
                          - key: appId
                          - key: csrId
                      status: Created
                      code: 201
                      _postman_previewlanguage: json
                      header:
                      - key: Content-Type
                        value: application/json
                      cookie: []
                      responseTime: null
                      body: "{\n  \"_links\": {\n    \"incididunt337\": {},\n    \"ut_69a\": {},\n    \"in06\": {},\n    \"\
                        occaecat2\": {},\n    \"et__\": {}\n  },\n  \"alg\": \"<string>\",\n  \"created\": \"<dateTime>\"\
                        ,\n  \"e\": \"<string>\",\n  \"expiresAt\": \"<dateTime>\",\n  \"key_ops\": [\n    \"<string>\",\n\
                        \    \"<string>\"\n  ],\n  \"kid\": \"<string>\",\n  \"kty\": \"<string>\",\n  \"lastUpdated\": \"\
                        <dateTime>\",\n  \"n\": \"<string>\",\n  \"status\": \"<string>\",\n  \"use\": \"<string>\",\n  \"\
                        x5c\": [\n    \"<string>\",\n    \"<string>\"\n  ],\n  \"x5t\": \"<string>\",\n  \"x5t#S256\": \"\
                        <string>\",\n  \"x5u\": \"<string>\"\n}"
                      createdAt: '2026-06-05T13:16:37.000Z'
                      updatedAt: '2026-06-05T13:16:37.000Z'
                      uid: 35240-8fe8e1e4-00d7-481e-bddb-6d5440801981
                    createdAt: '2026-06-05T13:16:36.000Z'
                    updatedAt: '2026-06-05T13:16:36.000Z'
                    uid: 35240-f26f3a7c-435e-44f0-be89-a82db0e95f78
                  id: b101817a-0cef-4334-a723-0eab0ee81466
                  createdAt: '2026-06-05T13:16:36.000Z'
                  updatedAt: '2026-06-05T13:16:36.000Z'
                  uid: 35240-b101817a-0cef-4334-a723-0eab0ee81466
                id: 59a1eba9-67fd-4aeb-a5ce-5826ef087ac4
                createdAt: '2026-06-05T13:16:36.000Z'
                updatedAt: '2026-06-05T13:16:36.000Z'
                uid: 35240-59a1eba9-67fd-4aeb-a5ce-5826ef087ac4
              - name: get Csr For Application
                id: 85b56723-81b5-455d-9b0e-f15acce5cdcc
                protocolProfileBehavior:
                  disableBodyPruning: true
                request:
                  auth:
                    type: apikey
                    apikey:
                    - key: key
                      value: Authorization
                      type: string
                    - key: value
                      value: '{{apiKey}}'
                      type: string
                    - key: in
                      value: header
                      type: string
                  method: GET
                  header:
                  - key: Accept
                    value: application/json
                  url:
                    raw: '{{baseUrl}}/api/v1/apps/:appId/credentials/csrs/:csrId'
                    host:
                    - '{{baseUrl}}'
                    path:
                    - api
                    - v1
                    - apps
                    - :appId
                    - credentials
                    - csrs
                    - :csrId
                    variable:
                    - id: c1ee0270-387b-4e5f-8a13-414c0d6fe2cb
                      key: appId
                      value: <string>
                      description: '(Required) '
                    - id: 4bfd04d2-a5ce-428b-848a-a3f316e4515c
                      key: csrId
                      value: <string>
                      description: '(Required) '
                response:
                - id: 04bced90-5707-4c83-9112-e6dace207a51
                  name: Success
                  originalRequest:
                    method: GET
                    header:
                    - key: Accept
                      value: application/json
                    - description: 'Added as a part of security scheme: apikey'
                      key: Authorization
                      value: <API Key>
                    url:
                      raw: '{{baseUrl}}/api/v1/apps/:appId/credentials/csrs/:csrId'
                      host:
                      - '{{baseUrl}}'
                      path:
                      - api
                      - v1
                      - apps
                      - :appId
                      - credentials
                      - csrs
                      - :csrId
                      variable:
                      - key: appId
                      - key: csrId
                  status: OK
                  code: 200
                  _postman_previewlanguage: json
                  header:
                  - key: Content-Type
                    value: application/json
                  cookie: []
                  responseTime: null
                  body: "{\n  \"created\": \"<dateTime>\",\n  \"csr\": \"<string>\",\n  \"id\": \"<string>\",\n  \"kty\":\
                    \ \"<string>\"\n}"
                  createdAt: '2026-06-05T13:16:37.000Z'
                  updatedAt: '2026-06-05T13:16:37.000Z'
                  uid: 35240-04bced90-5707-4c83-9112-e6dace207a51
                createdAt: '2026-06-05T13:16:36.000Z'
                updatedAt: '2026-06-05T13:16:36.000Z'
                uid: 35240-85b56723-81b5-455d-9b0e-f15acce5cdcc
              - name: revoke Csr From Application
                id: 487dbd9b-c1e7-4e03-b447-519e72a2a31e
                protocolProfileBehavior:
                  disableBodyPruning: true
                request:
                  auth:
                    type: apikey
                    apikey:
                    - key: key
                      value: Authorization
                      type: string
                    - key: value
                      value: '{{apiKey}}'
                      type: string
                    - key: in
                      value: header
                      type: string
                  method: DELETE
                  header: []
                  url:
                    raw: '{{baseUrl}}/api/v1/apps/:appId/credentials/csrs/:csrId'
                    host:
                    - '{{baseUrl}}'
                    path:
                    - api
                    - v1
                    - apps
                    - :appId
                    - credentials
                    - csrs
                    - :csrId
                    variable:
                    - id: a9b59380-bd2a-4b4f-bf53-be00257b3a4b
                      key: appId
                      value: <string>
                      description: '(Required) '
                    - id: 9a07950b-904d-4114-b75f-84e229cc76f0
                      key: csrId
                      value: <string>
                      description: '(Required) '
                response:
                - id: 77b115cb-e839-487a-a627-65496b9dfea9
                  name: No Content
                  originalRequest:
                    method: DELETE
                    header:
                    - description: 'Added as a part of security scheme: apikey'
                      key: Authorization
                      value: <API Key>
                    url:
           

# --- truncated at 32 KB (4137 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/okta/refs/heads/main/apis.yml