How to Use Okta as openId authentication provider in azure function

Question

I have created an azure function and trying to configure okta as an openId connect authentication provider on function app server thorugh portal. below are my step

1) Registered a client(SSO) application in OKta (using free okta developer account )
2)Registered API application with client credential flow with scope api(custom scope) in Okta
2) Configured function app authentication section with Okta openId meta url
3) Successfully generated 'access_token' and 'id_token' with api scope
3) Tried passing access token directly to function as header Authorization: bearer <access_token>

Received 401 error
4) Tried passing id_token as post requst to <functionhost>/.auth/login/<oktaprovider name> for session token

Received 401 error

when tried to verify my tokens with openId v1/introspect url from okta i am getting scopes defined and an active token

I am not sure what I am missing. I am able to connect azure add as both Microsoft provider and openId connect provider without issue

Is this a an issue with function app itself?

I can see a scope section inazure function openId provider but can't enter any value there. what is the purpose of scope tab?

Answer 1

@Sajin Sudhakaran , Please make sure that you are following the grant types as mentioned in the below article

https://developer.okta.com/blog/2018/04/10/oauth-authorization-code-grant-type