Add support to pkce_required property for OIDC app integrations #1241
Labels
enhancement
Asking for new behavior or feature
okta-sdk-golang
Issue is related to upstream okta-sdk-golang
quick-fix
Do this work is a quick fix
triaged
Triaged into internal Jira
Community Note
Description
There is a new property available in OAuth Application: https://developer.okta.com/docs/release-notes/2022-okta-identity-engine/#monthly-release-2022-08-0
PKCE validation for OIDC app integrations is GA in Preview
You can now require Proof Key for Code Exchange (PKCE) as an additional verification for any OpenID Connect app integration except service apps. This more closely aligns with the OAuth Security Best Current Practice recommendation to use PKCE with the authorization code flow regardless of the client type. Use the pkce_required property with the Apps API to require PKCE for your app.
It would be good to support this new property in this module.
New or Affected Resource(s)
References
https://developer.okta.com/docs/release-notes/2022-okta-identity-engine/#monthly-release-2022-08-0
The text was updated successfully, but these errors were encountered: