Unfortunately, because Okta is not quite ready for now we have to set up Okta a bit more manually. The following are instructions to set that up.

1. Login to Okta Admin interface and go to the Applications tab.
2. Create a new App Integration. Select OIDC for Sign-in Method and Web Application for the Application Type

1. Enter the App Integration Name

2. Check "Refresh Token" to Grant type

3. Change the Add the Sign-in Redirect urls to be: https://support.foqal.io/auth/okta-integration/callback https://support.foqal.io/auth/workflow/callback

4. Specify the controlled access type.

1. Click "Okta API Scopes" and grant the following scopes:
   • okta.apps.manage
   • okta.apps.read
   • okta.groups.manage
   • okta.groups.read
   • okta.roles.read
   • okta.schemas.read
   • okta.sessions.manage
   • okta.sessions.read
   • okta.users.manage
   • okta.users.read
   • okta.users.read.self