Upgrade dependency okta-sdk-java version about okta-auth-java HOT 7 OPEN

@jadiaconu here is another resource to look into. It performs the same operations as the authn API, but works through the OAuth endpoints.

https://developer.okta.com/docs/guides/implement-grant-type/ropassword/main/#about-the-direct-authentication-mfa-oob-grant

from okta-auth-java.

@dongmei-cao We encourage you use the Okta IDX SDK (that is built for customers to leverage the Okta Identity Engine) instead of this legacy Authentication SDK (okta-auth-java). We do not intend to do further upgrades to okta-auth-java in an effort to move users to Okta Identity Engine.

from okta-auth-java.

@arvindkrishnakumar-okta Hello,

We are trying to migrate to IDX SDK but (at least) one feature is missing:

This is the code used with the okta-auth-java library:
`
// Authenticate user
AuthenticationResponse response =
authenticationClient.authenticate(username, password.toCharArray(), null, null);

return response.getSessionToken();
`
The problem: We don't want to have a full authentication flow (with access token, etc.) that the IDXAuthentication.authenticate() wrapper provides, we just want to have a session token and initiate a login later from a SPA OIDC flow like indicated here: https://developer.okta.com/docs/reference/api/authn/#get-started-with-authentication in the /authn POST endpoint.

Is there a way to achieve this with IDX ?
If not, what would be the approach since we need to migrate to Okta > 8.2.5 ?

Thank you for your help

from okta-auth-java.

@arvindkrishnakumar-okta coming back with updates: after studying IDX, unfortunately it doesn't replace at all this library. It is actually implementing the full workflows, ending with the user logged in, but this is not always what we want. In some cases you would like to stop at the "sessionToken" state and continue with another kind of flow (SPA OIDC for example).
For that reason IDX requires a client_id/client_secret/scopes/redirectUri application and this library requires only the auth_server domain.

Long story short: we ended up implementing the endpoint calls ourselves (/authn, /recovery/verify, /credentials/reset_password). If this library gets updated, we'll integrate it back.

Thank you for your help,

from okta-auth-java.

@jadiaconu Thanks for the request! What use case are you trying to implement with this flow?

from okta-auth-java.

@jadiaconu In addition to @jefftaylor-okta 's question above, I'm curious on what value addition does an upgrade of okta-sdk-java from 8.2.5 to the latest will bring to your use case?

from okta-auth-java.

@arvindkrishnakumar-okta actually it will bring no value, everything works perfectly.
The only problem is that we are using the okta-java-sdk in the same project and we would like to upgrade it to 13.0.2 (latest version).
This brings a conflict with this library which uses 8.2.5.

from okta-auth-java.