SAML 2.0 Assertion

SAML 2.0 Assertion Flow

CLIENT APP

Exchange a Base64-encoded SAML 2.0 assertion for an OAuth 2.0 access token. The assertion is typically obtained from a SAML Identity Provider.

/oauth2/default/v1/token grant_type=urn:ietf:params:oauth:grant-type:saml2-bearer

Configuration

Okta Domain

Authorization Server

/oauth2/default/v1/

Client ID

Client Secret (optional)

SAML 2.0 Assertion

Scopes (optional)

Configure Okta Domain and Authorization Server to load scopes

cURL Command

Explain cURL | regenerate curl

Response

CLIENT APP Optional

Test the access token by making an authenticated API request to a resource server.

Request Body (optional)

cURL Command

Explain cURL | regenerate curl