Query structured spec data via REST or MCP. Get exactly what your agent needs.
https://your-subdomain.okta.com
/api/v1/apps/{appId}
Removes an inactive application.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| appId | path | required | string | — |
Success
DELETE /api/v1/apps/{appId}
/api/v1/apps/{appId}/credentials/csrs/{csrId}
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| appId | path | required | string | — |
| csrId | path | required | string | — |
No Content
DELETE /api/v1/apps/{appId}/credentials/csrs/{csrId}
/api/v1/apps/{appId}/credentials/secrets/{secretId}
Removes a secret from the client’s collection of secrets.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| appId | path | required | string | — |
| secretId | path | required | string | — |
No Content
DELETE /api/v1/apps/{appId}/credentials/secrets/{secretId}
/api/v1/apps/{appId}/grants/{grantId}
Revokes permission for the application to request the given scope
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| appId | path | required | string | — |
| grantId | path | required | string | — |
No Content
DELETE /api/v1/apps/{appId}/grants/{grantId}
/api/v1/apps/{appId}/groups/{groupId}
Removes a group assignment from an application.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| appId | path | required | string | — |
| groupId | path | required | string | — |
No Content
DELETE /api/v1/apps/{appId}/groups/{groupId}
/api/v1/apps/{appId}/tokens
Revokes all tokens for the specified application
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| appId | path | required | string | — |
No Content
DELETE /api/v1/apps/{appId}/tokens
/api/v1/apps/{appId}/tokens/{tokenId}
Revokes the specified token for the specified application
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| appId | path | required | string | — |
| tokenId | path | required | string | — |
No Content
DELETE /api/v1/apps/{appId}/tokens/{tokenId}
/api/v1/apps/{appId}/users/{userId}
Removes an assignment for a user from an application.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| appId | path | required | string | — |
| userId | path | required | string | — |
| sendEmail | query | optional | boolean | — |
No Content
DELETE /api/v1/apps/{appId}/users/{userId}
/api/v1/authorizationServers/{authServerId}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| authServerId | path | required | string | — |
No Content
DELETE /api/v1/authorizationServers/{authServerId}
/api/v1/authorizationServers/{authServerId}/claims/{claimId}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| authServerId | path | required | string | — |
| claimId | path | required | string | — |
No Content
DELETE /api/v1/authorizationServers/{authServerId}/claims/{claimId}
/api/v1/authorizationServers/{authServerId}/clients/{clientId}/tokens
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| authServerId | path | required | string | — |
| clientId | path | required | string | — |
No Content
DELETE /api/v1/authorizationServers/{authServerId}/clients/{clientId}/tokens
/api/v1/authorizationServers/{authServerId}/clients/{clientId}/tokens/{tokenId}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| authServerId | path | required | string | — |
| clientId | path | required | string | — |
| tokenId | path | required | string | — |
No Content
DELETE /api/v1/authorizationServers/{authServerId}/clients/{clientId}/tokens/{tokenId}
/api/v1/authorizationServers/{authServerId}/policies/{policyId}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| authServerId | path | required | string | — |
| policyId | path | required | string | — |
No Content
DELETE /api/v1/authorizationServers/{authServerId}/policies/{policyId}
/api/v1/authorizationServers/{authServerId}/policies/{policyId}/rules/{ruleId}
Deletes a Policy Rule defined in the specified Custom Authorization Server and Policy.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| authServerId | path | required | string | — |
| policyId | path | required | string | — |
| ruleId | path | required | string | — |
No Content
DELETE /api/v1/authorizationServers/{authServerId}/policies/{policyId}/rules/{ruleId}
/api/v1/authorizationServers/{authServerId}/scopes/{scopeId}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| authServerId | path | required | string | — |
| scopeId | path | required | string | — |
No Content
DELETE /api/v1/authorizationServers/{authServerId}/scopes/{scopeId}
/api/v1/brands/{brandId}/templates/email/{templateName}/customizations
Delete all customizations for an email template. Also known as “Reset to Default”.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| brandId | path | required | string | — |
| templateName | path | required | string | — |
Success
DELETE /api/v1/brands/{brandId}/templates/email/{templateName}/customizations
/api/v1/brands/{brandId}/templates/email/{templateName}/customizations/{customizationId}
Delete an email customization
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| brandId | path | required | string | — |
| templateName | path | required | string | — |
| customizationId | path | required | string | — |
No Content
Conflict
DELETE /api/v1/brands/{brandId}/templates/email/{templateName}/customizations/{customizationId}
/api/v1/brands/{brandId}/themes/{themeId}/background-image
Deletes a Theme background image
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| brandId | path | required | string | — |
| themeId | path | required | string | — |
No Content
Not Found
DELETE /api/v1/brands/{brandId}/themes/{themeId}/background-image
/api/v1/brands/{brandId}/themes/{themeId}/favicon
Deletes a Theme favicon. The org then uses the Okta default favicon.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| brandId | path | required | string | — |
| themeId | path | required | string | — |
No Content
Not Found
DELETE /api/v1/brands/{brandId}/themes/{themeId}/favicon
/api/v1/brands/{brandId}/themes/{themeId}/logo
Deletes a Theme logo. The org then uses the Okta default logo.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| brandId | path | required | string | — |
| themeId | path | required | string | — |
No Content
Not Found
DELETE /api/v1/brands/{brandId}/themes/{themeId}/logo
/api/v1/domains/{domainId}
Deletes a Domain by id.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| domainId | path | required | string | — |
No Content
DELETE /api/v1/domains/{domainId}
/api/v1/eventHooks/{eventHookId}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| eventHookId | path | required | string | — |
No Content
DELETE /api/v1/eventHooks/{eventHookId}
/api/v1/groups/rules/{ruleId}
Removes a specific group rule by id from your organization
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| ruleId | path | required | string | — |
| removeUsers | query | optional | boolean | Indicates whether to keep or remove users from groups assigned by this rule. |
Accepted
DELETE /api/v1/groups/rules/{ruleId}
/api/v1/groups/{groupId}
Removes a group with OKTA_GROUP type from your organization.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| groupId | path | required | string | — |
No Content
DELETE /api/v1/groups/{groupId}
/api/v1/groups/{groupId}/roles/{roleId}
Unassigns a Role from a Group
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| groupId | path | required | string | — |
| roleId | path | required | string | — |
No Content
DELETE /api/v1/groups/{groupId}/roles/{roleId}
/api/v1/groups/{groupId}/roles/{roleId}/targets/catalog/apps/{appName}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| groupId | path | required | string | — |
| roleId | path | required | string | — |
| appName | path | required | string | — |
No Content
DELETE /api/v1/groups/{groupId}/roles/{roleId}/targets/catalog/apps/{appName}
/api/v1/groups/{groupId}/roles/{roleId}/targets/catalog/apps/{appName}/{applicationId}
Remove App Instance Target to App Administrator Role given to a Group
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| groupId | path | required | string | — |
| roleId | path | required | string | — |
| appName | path | required | string | — |
| applicationId | path | required | string | — |
No Content
DELETE /api/v1/groups/{groupId}/roles/{roleId}/targets/catalog/apps/{appName}/{applicationId}
/api/v1/groups/{groupId}/roles/{roleId}/targets/groups/{targetGroupId}
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| groupId | path | required | string | — |
| roleId | path | required | string | — |
| targetGroupId | path | required | string | — |
No Content
DELETE /api/v1/groups/{groupId}/roles/{roleId}/targets/groups/{targetGroupId}
/api/v1/groups/{groupId}/users/{userId}
Removes a user from a group with ‘OKTA_GROUP’ type.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| groupId | path | required | string | — |
| userId | path | required | string | — |
No Content
DELETE /api/v1/groups/{groupId}/users/{userId}
/api/v1/idps/credentials/keys/{keyId}
Deletes a specific IdP Key Credential by kid if it is not currently being used by an Active or Inactive IdP.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| keyId | path | required | string | — |
No Content
DELETE /api/v1/idps/credentials/keys/{keyId}
/api/v1/idps/{idpId}
Removes an IdP from your organization.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| idpId | path | required | string | — |
No Content
DELETE /api/v1/idps/{idpId}
/api/v1/idps/{idpId}/credentials/csrs/{csrId}
Revoke a Certificate Signing Request and delete the key pair from the IdP
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| idpId | path | required | string | — |
| csrId | path | required | string | — |
No Content
DELETE /api/v1/idps/{idpId}/credentials/csrs/{csrId}
/api/v1/idps/{idpId}/users/{userId}
Removes the link between the Okta user and the IdP user.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| idpId | path | required | string | — |
| userId | path | required | string | — |
No Content
DELETE /api/v1/idps/{idpId}/users/{userId}
/api/v1/inlineHooks/{inlineHookId}
Deletes the Inline Hook matching the provided id. Once deleted, the Inline Hook is unrecoverable. As a safety precaution, only Inline Hooks with a status of INACTIVE are eligible for deletion.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| inlineHookId | path | required | string | — |
No Content
DELETE /api/v1/inlineHooks/{inlineHookId}
/api/v1/meta/schemas/user/linkedObjects/{linkedObjectName}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| linkedObjectName | path | required | string | — |
No Content
DELETE /api/v1/meta/schemas/user/linkedObjects/{linkedObjectName}
/api/v1/zones/{zoneId}
Removes network zone.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| zoneId | path | required | string | — |
Success
DELETE /api/v1/zones/{zoneId}
/api/v1/policies/{policyId}
Removes a policy.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| policyId | path | required | string | — |
Success
DELETE /api/v1/policies/{policyId}
/api/v1/policies/{policyId}/rules/{ruleId}
Removes a policy rule.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| policyId | path | required | string | — |
| ruleId | path | required | string | — |
No Content
DELETE /api/v1/policies/{policyId}/rules/{ruleId}
/api/v1/sessions/{sessionId}
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| sessionId | path | required | string | — |
No Content
Bad Request
Not Found
DELETE /api/v1/sessions/{sessionId}
/api/v1/templates/sms/{templateId}
Removes an SMS template.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| templateId | path | required | string | — |
No Content
DELETE /api/v1/templates/sms/{templateId}
/api/v1/trustedOrigins/{trustedOriginId}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| trustedOriginId | path | required | string | — |
Success
DELETE /api/v1/trustedOrigins/{trustedOriginId}
/api/v1/users/{userId}
Deletes a user permanently. This operation can only be performed on users that have a DEPROVISIONED status. This action cannot be recovered!
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| sendEmail | query | optional | boolean | — |
ACCEPTED
DELETE /api/v1/users/{userId}
/api/v1/users/{userId}/clients/{clientId}/grants
Revokes all grants for the specified user and client
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| clientId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/clients/{clientId}/grants
/api/v1/users/{userId}/clients/{clientId}/tokens
Revokes all refresh tokens issued for the specified User and Client.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| clientId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/clients/{clientId}/tokens
/api/v1/users/{userId}/clients/{clientId}/tokens/{tokenId}
Revokes the specified refresh token.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| clientId | path | required | string | — |
| tokenId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/clients/{clientId}/tokens/{tokenId}
/api/v1/users/{userId}/grants
Revokes all grants for a specified user
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/grants
/api/v1/users/{userId}/grants/{grantId}
Revokes one grant for a specified user
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| grantId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/grants/{grantId}
/api/v1/users/{userId}/linkedObjects/{relationshipName}
Delete linked objects for a user, relationshipName can be ONLY a primary relationship name
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| relationshipName | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/linkedObjects/{relationshipName}
/api/v1/users/{userId}/roles/{roleId}
Unassigns a role from a user.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| roleId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/roles/{roleId}
/api/v1/users/{userId}/roles/{roleId}/targets/catalog/apps/{appName}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| roleId | path | required | string | — |
| appName | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/roles/{roleId}/targets/catalog/apps/{appName}
/api/v1/users/{userId}/roles/{roleId}/targets/catalog/apps/{appName}/{applicationId}
Remove App Instance Target to App Administrator Role given to a User
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| roleId | path | required | string | — |
| appName | path | required | string | — |
| applicationId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/roles/{roleId}/targets/catalog/apps/{appName}/{applicationId}
/api/v1/users/{userId}/roles/{roleId}/targets/groups/{groupId}
Success
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| roleId | path | required | string | — |
| groupId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/roles/{roleId}/targets/groups/{groupId}
/api/v1/users/{userId}/sessions
Removes all active identity provider sessions. This forces the user to authenticate on the next operation. Optionally revokes OpenID Connect and OAuth refresh and access tokens issued to the user.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| oauthTokens | query | optional | boolean | Revoke issued OpenID Connect and OAuth refresh and access tokens |
No Content
DELETE /api/v1/users/{userId}/sessions
/api/v1/users/{userId}/factors/{factorId}
Unenrolls an existing factor for the specified user, allowing the user to enroll a new factor.
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| userId | path | required | string | — |
| factorId | path | required | string | — |
No Content
DELETE /api/v1/users/{userId}/factors/{factorId}
/api/v1/meta/types/user/{typeId}
Deletes a User Type permanently. This operation is not permitted for the default type, nor for any User Type that has existing users
| Name | In | Required | Type | Description |
|---|---|---|---|---|
| typeId | path | required | string | — |
No Content
DELETE /api/v1/meta/types/user/{typeId}
AccessPolicy
{
"x-okta-tags": [
"Policy"
],
"x-okta-parent": "#/definitions/Policy"
}
AccessPolicyConstraint
{
"type": "object",
"properties": {
"types": {
"type": "array",
"items": {
"type": "string"
}
},
"methods": {
"type": "array",
"items": {
"type": "string"
}
},
"reauthenticateIn": {
"type": "string"
}
},
"x-okta-tags": [
"Policy"
]
}
AccessPolicyConstraints
{
"type": "object",
"properties": {
"knowledge": {
"$ref": "#/components/schemas/KnowledgeConstraint"
},
"possession": {
"$ref": "#/components/schemas/PossessionConstraint"
}
},
"x-okta-tags": [
"Policy"
]
}
AccessPolicyRule
{
"type": "object",
"properties": {
"name": {
"type": "string"
},
"actions": {
"$ref": "#/components/schemas/AccessPolicyRuleActions"
},
"conditions": {
"$ref": "#/components/schemas/AccessPolicyRuleConditions"
}
},
"x-okta-tags": [
"Policy"
],
"x-okta-parent": "#/definitions/PolicyRule"
}
AccessPolicyRuleActions
{
"type": "object",
"properties": {
"appSignOn": {
"$ref": "#/components/schemas/AccessPolicyRuleApplicationSignOn"
}
},
"x-okta-tags": [
"Policy"
],
"x-okta-parent": "#/definitions/PolicyRuleActions"
}
AccessPolicyRuleApplicationSignOn
{
"type": "object",
"properties": {
"access": {
"type": "string"
},
"verificationMethod": {
"$ref": "#/components/schemas/VerificationMethod"
}
},
"x-okta-tags": [
"Policy"
]
}
AccessPolicyRuleConditions
{
"properties": {
"device": {
"$ref": "#/components/schemas/DeviceAccessPolicyRuleCondition"
},
"userType": {
"$ref": "#/components/schemas/UserTypeCondition"
},
"elCondition": {
"$ref": "#/components/schemas/AccessPolicyRuleCustomCondition"
}
},
"x-okta-tags": [
"Policy"
],
"x-okta-parent": "#/definitions/PolicyRuleConditions"
}
AccessPolicyRuleCustomCondition
{
"properties": {
"condition": {
"type": "string"
}
},
"x-okta-tags": [
"Policy"
]
}
AcsEndpoint
{
"properties": {
"url": {
"type": "string"
},
"index": {
"type": "integer"
}
},
"x-okta-tags": [
"Application"
]
}
ActivateFactorRequest
{
"properties": {
"passCode": {
"type": "string"
},
"clientData": {
"type": "string"
},
"stateToken": {
"type": "string"
},
"attestation": {
"type": "string"
},
"registrationData": {
"type": "string"
}
},
"x-okta-tags": [
"UserFactor"
]
}
AllowedForEnum
{
"enum": [
"recovery",
"sso",
"any",
"none"
],
"type": "string",
"x-okta-tags": [
"Authenticator"
]
}
AppAndInstanceConditionEvaluatorAppOrInstance
{
"type": "object",
"properties": {
"id": {
"type": "string",
"readOnly": true
},
"name": {
"type": "string"
},
"type": {
"enum": [
"APP_TYPE",
"APP"
],
"type": "string"
}
},
"x-okta-tags": [
"Policy"
]
}
AppAndInstancePolicyRuleCondition
{
"type": "object",
"properties": {
"exclude": {
"type": "array",
"items": {
"$ref": "#/components/schemas/AppAndInstanceConditionEvaluatorAppOrInstance"
}
},
"include": {
"type": "array",
"items": {
"$ref": "#/components/schemas/AppAndInstanceConditionEvaluatorAppOrInstance"
}
}
},
"x-okta-tags": [
"Policy"
]
}
AppInstancePolicyRuleCondition
{
"type": "object",
"properties": {
"exclude": {
"type": "array",
"items": {
"type": "string"
}
},
"include": {
"type": "array",
"items": {
"type": "string"
}
}
},
"x-okta-tags": [
"Policy"
]
}
AppLink
{
"type": "object",
"properties": {
"id": {
"type": "string",
"readOnly": true
},
"label": {
"type": "string",
"readOnly": true
},
"hidden": {
"type": "boolean",
"readOnly": true
},
"appName": {
"type": "string",
"readOnly": true
},
"linkUrl": {
"type": "string",
"readOnly": true
},
"logoUrl": {
"type": "string",
"readOnly": true
},
"sortOrder": {
"type": "integer",
"readOnly": true
},
"appInstanceId": {
"type": "string",
"readOnly": true
},
"appAssignmentId": {
"type": "string",
"readOnly": true
},
"credentialsSetup": {
"type": "boolean",
"readOnly": true
}
},
"x-okta-tags": [
"User"
]
}
AppUser
{
"type": "object",
"properties": {
"id": {
"type": "string"
},
"scope": {
"type": "string"
},
"_links": {
"type": "object",
"readOnly": true,
"additionalProperties": {
"type": "object"
}
},
"status": {
"type": "string",
"readOnly": true
},
"created": {
"type": "string",
"format": "date-time",
"readOnly": true
},
"profile": {
"type": "object",
"additionalProperties": {
"type": "object"
}
},
"lastSync": {
"type": "string",
"format": "date-time",
"readOnly": true
},
"_embedded": {
"type": "object",
"readOnly": true,
"additionalProperties": {
"type": "object"
}
},
"syncState": {
"type": "string",
"readOnly": true
},
"externalId": {
"type": "string",
"readOnly": true
},
"credentials": {
"$ref": "#/components/schemas/AppUserCredentials"
},
"lastUpdated": {
"type": "string",
"format": "date-time",
"readOnly": true
},
"statusChanged": {
"type": "string",
"format": "date-time",
"readOnly": true
},
"passwordChanged": {
"type": "string",
"format": "date-time",
"readOnly": true
}
},
"x-okta-crud": [
{
"alias": "update",
"arguments": [
{
"dest": "appId",
"parentSrc": "appId"
},
{
"src": "id",
"dest": "userId"
},
{
"dest": "appUser",
"self": true
}
],
"operationId": "updateApplicationUser"
},
{
"alias": "delete",
"arguments": [
{
"dest": "appId",
"parentSrc": "appId"
},
{
"src": "id",
"dest": "userId"
}
],
"operationId": "deleteApplicationUser"
}
],
"x-okta-tags": [
"Application"
]
}
AppUserCredentials
{
"type": "object",
"properties": {
"password": {
"$ref": "#/components/schemas/AppUserPasswordCredential"
},
"userName": {
"type": "string"
}
},
"x-okta-tags": [
"Application"
]
}
AppUserPasswordCredential
{
"properties": {
"value": {
"type": "string",
"format": "password"
}
},
"x-okta-tags": [
"Application"
]
}
Application
{
"type": "object",
"properties": {
"id": {
"type": "string",
"readOnly": true
},
"name": {
"type": "string",
"readOnly": true
},
"label": {
"type": "string"
},
"_links": {
"type": "object",
"readOnly": true,
"additionalProperties": {
"type": "object"
}
},
"status": {
"enum": [
"ACTIVE",
"INACTIVE",
"DELETED"
],
"type": "string",
"readOnly": true
},
"created": {
"type": "string",
"format": "date-time",
"readOnly": true
},
"profile": {
"type": "object",
"additionalProperties": {
"type": "object"
}
},
"features": {
"type": "array",
"items": {
"type": "string"
}
},
"settings": {
"$ref": "#/components/schemas/ApplicationSettings"
},
"_embedded": {
"type": "object",
"readOnly": true,
"additionalProperties": {
"type": "object"
}
},
"licensing": {
"$ref": "#/components/schemas/ApplicationLicensing"
},
"signOnMode": {
"$ref": "#/components/schemas/ApplicationSignOnMode"
},
"visibility": {
"$ref": "#/components/schemas/ApplicationVisibility"
},
"credentials": {
"$ref": "#/components/schemas/ApplicationCredentials"
},
"lastUpdated": {
"type": "string",
"format": "date-time",
"readOnly": true
},
"accessibility": {
"$ref": "#/components/schemas/ApplicationAccessibility"
}
},
"x-okta-crud": [
{
"alias": "read",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "getApplication"
},
{
"alias": "update",
"arguments": [
{
"src": "id",
"dest": "appId"
},
{
"dest": "application",
"self": true
}
],
"operationId": "updateApplication"
},
{
"alias": "delete",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "deleteApplication"
}
],
"x-okta-tags": [
"Application"
],
"x-okta-operations": [
{
"alias": "activate",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "activateApplication"
},
{
"alias": "deactivate",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "deactivateApplication"
},
{
"alias": "listApplicationUsers",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "listApplicationUsers"
},
{
"alias": "assignUserToApplication",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "assignUserToApplication"
},
{
"alias": "getApplicationUser",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "getApplicationUser"
},
{
"alias": "createApplicationGroupAssignment",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "createApplicationGroupAssignment"
},
{
"alias": "getApplicationGroupAssignment",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "getApplicationGroupAssignment"
},
{
"alias": "cloneApplicationKey",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "cloneApplicationKey"
},
{
"alias": "getApplicationKey",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "getApplicationKey"
},
{
"alias": "listGroupAssignments",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "listApplicationGroupAssignments"
},
{
"alias": "listKeys",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "listApplicationKeys"
},
{
"alias": "generateKey",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "generateApplicationKey"
},
{
"alias": "generateCsr",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "generateCsrForApplication"
},
{
"alias": "getCsr",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "getCsrForApplication"
},
{
"alias": "revokeCsr",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "revokeCsrFromApplication"
},
{
"alias": "listCsrs",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "listCsrsForApplication"
},
{
"alias": "publishCerCert",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "publishCerCert"
},
{
"alias": "publishBinaryCerCert",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "publishBinaryCerCert"
},
{
"alias": "publishDerCert",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "publishDerCert"
},
{
"alias": "publishBinaryDerCert",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "publishBinaryDerCert"
},
{
"alias": "publishBinaryPemCert",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "publishBinaryPemCert"
},
{
"alias": "listOAuth2Tokens",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "listOAuth2TokensForApplication"
},
{
"alias": "revokeOAuth2TokenForApplication",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "revokeOAuth2TokenForApplication"
},
{
"alias": "getOAuth2Token",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "getOAuth2TokenForApplication"
},
{
"alias": "revokeOAuth2Tokens",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "revokeOAuth2TokensForApplication"
},
{
"alias": "listScopeConsentGrants",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "listScopeConsentGrants"
},
{
"alias": "grantConsentToScope",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "grantConsentToScope"
},
{
"alias": "revokeScopeConsentGrant",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "revokeScopeConsentGrant"
},
{
"alias": "getScopeConsentGrant",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "getScopeConsentGrant"
},
{
"alias": "uploadApplicationLogo",
"operationId": "uploadApplicationLogo"
},
{
"alias": "getFeatureForApplication",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "getFeatureForApplication"
},
{
"alias": "updateFeatureForApplication",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "updateFeatureForApplication"
},
{
"alias": "updateApplicationPolicy",
"arguments": [
{
"src": "id",
"dest": "appId"
}
],
"operationId": "updateApplicationPolicy"
}
],
"x-openapi-v3-discriminator": {
"mapping": {
"BOOKMARK": "#/definitions/BookmarkApplication",
"SAML_1_1": "#/definitions/SamlApplication",
"SAML_2_0": "#/definitions/SamlApplication",
"AUTO_LOGIN": "#/definitions/AutoLoginApplication",
"BASIC_AUTH": "#/definitions/BasicAuthApplication",
"WS_FEDERATION": "#/definitions/WsFederationApplication",
"BROWSER_PLUGIN": "#/definitions/BrowserPluginApplication",
"OPENID_CONNECT": "#/definitions/OpenIdConnectApplication",
"SECURE_PASSWORD_STORE": "#/definitions/SecurePasswordStoreApplication"
},
"propertyName": "signOnMode"
}
}
ApplicationAccessibility
{
"type": "object",
"properties": {
"selfService": {
"type": "boolean"
},
"errorRedirectUrl": {
"type": "string"
},
"loginRedirectUrl": {
"type": "string"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationCredentials
{
"type": "object",
"properties": {
"signing": {
"$ref": "#/components/schemas/ApplicationCredentialsSigning"
},
"userNameTemplate": {
"$ref": "#/components/schemas/ApplicationCredentialsUsernameTemplate"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationCredentialsOAuthClient
{
"properties": {
"client_id": {
"type": "string"
},
"client_secret": {
"type": "string"
},
"pkce_required": {
"type": "boolean"
},
"autoKeyRotation": {
"type": "boolean"
},
"token_endpoint_auth_method": {
"$ref": "#/components/schemas/OAuthEndpointAuthenticationMethod"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationCredentialsScheme
{
"enum": [
"SHARED_USERNAME_AND_PASSWORD",
"EXTERNAL_PASSWORD_SYNC",
"EDIT_USERNAME_AND_PASSWORD",
"EDIT_PASSWORD_ONLY",
"ADMIN_SETS_CREDENTIALS"
],
"type": "string",
"x-okta-tags": [
"Application"
]
}
ApplicationCredentialsSigning
{
"type": "object",
"properties": {
"kid": {
"type": "string"
},
"use": {
"$ref": "#/components/schemas/ApplicationCredentialsSigningUse"
},
"lastRotated": {
"type": "string",
"format": "date-time",
"readOnly": true
},
"nextRotation": {
"type": "string",
"format": "date-time",
"readOnly": true
},
"rotationMode": {
"type": "string"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationCredentialsSigningUse
{
"enum": [
"sig"
],
"type": "string",
"x-okta-tags": [
"AuthorizationServer"
]
}
ApplicationCredentialsUsernameTemplate
{
"type": "object",
"properties": {
"type": {
"type": "string"
},
"suffix": {
"type": "string"
},
"template": {
"type": "string"
},
"pushStatus": {
"type": "string"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationFeature
{
"type": "object",
"properties": {
"name": {
"type": "string"
},
"_links": {
"type": "object",
"readOnly": true,
"additionalProperties": {
"type": "object"
}
},
"status": {
"$ref": "#/components/schemas/EnabledStatus"
},
"description": {
"type": "string"
},
"capabilities": {
"$ref": "#/components/schemas/CapabilitiesObject"
}
},
"x-okta-tags": [
"Application"
],
"x-okta-operations": [
{
"alias": "listFeaturesForApplication",
"operationId": "listFeaturesForApplication"
}
]
}
ApplicationGroupAssignment
{
"type": "object",
"properties": {
"id": {
"type": "string",
"readOnly": true
},
"_links": {
"type": "object",
"readOnly": true,
"additionalProperties": {
"type": "object"
}
},
"profile": {
"type": "object",
"additionalProperties": {
"type": "object"
}
},
"priority": {
"type": "integer"
},
"_embedded": {
"type": "object",
"readOnly": true,
"additionalProperties": {
"type": "object"
}
},
"lastUpdated": {
"type": "string",
"format": "date-time",
"readOnly": true
}
},
"x-okta-crud": [
{
"alias": "delete",
"arguments": [
{
"dest": "appId",
"parentSrc": "appId"
},
{
"src": "id",
"dest": "groupId"
}
],
"operationId": "deleteApplicationGroupAssignment"
}
],
"x-okta-tags": [
"Application"
]
}
ApplicationLicensing
{
"type": "object",
"properties": {
"seatCount": {
"type": "integer"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationListAppsResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/Application"
}
}
ApplicationListAssignedUsersResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/AppUser"
}
}
ApplicationListClientSecretsResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/ClientSecret"
}
}
ApplicationListCsrsForApplicationResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/Csr"
}
}
ApplicationListFeaturesResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/ApplicationFeature"
}
}
ApplicationListGroupsAssignedResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/ApplicationGroupAssignment"
}
}
ApplicationListKeyCredentialsResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/JsonWebKey"
}
}
ApplicationListScopeConsentGrantsResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/OAuth2ScopeConsentGrant"
}
}
ApplicationListTokensResponse
{
"type": "array",
"items": {
"$ref": "#/components/schemas/OAuth2Token"
}
}
ApplicationPreviewSamlAppMetadataResponse
{
"type": "object",
"properties": {
"EntityDescriptor": {
"type": "object",
"properties": {
"entityID": {
"xml": {
"attribute": true
},
"type": "string"
},
"IDPSSODescriptor": {
"type": "object",
"properties": {
"NameIDFormat": {
"type": "array",
"items": {
"type": "string"
}
},
"KeyDescriptor": {
"type": "object",
"properties": {
"use": {
"xml": {
"attribute": true
},
"type": "string"
},
"KeyInfo": {
"type": "object",
"properties": {
"X509Data": {
"type": "object",
"properties": {
"X509Certificate": {
"type": "string"
}
}
}
}
}
}
},
"SingleLogoutService": {
"type": "array",
"items": {
"type": "string"
},
"properties": {
"Binding": {
"xml": {
"attribute": true
},
"type": "string"
},
"Location": {
"xml": {
"attribute": true
},
"type": "string"
}
}
},
"SingleSignOnService": {
"type": "array",
"items": {
"type": "string"
},
"properties": {
"Binding": {
"xml": {
"attribute": true
},
"type": "string"
},
"Location": {
"xml": {
"attribute": true
},
"type": "string"
}
}
},
"WantAuthnRequestsSigned": {
"xml": {
"attribute": true
},
"type": "boolean"
},
"protocolSupportEnumeration": {
"xml": {
"attribute": true
},
"type": "string"
}
}
}
}
}
}
}
ApplicationSettings
{
"type": "object",
"properties": {
"app": {
"$ref": "#/components/schemas/ApplicationSettingsApplication"
},
"notes": {
"$ref": "#/components/schemas/ApplicationSettingsNotes"
},
"inlineHookId": {
"type": "string"
},
"notifications": {
"$ref": "#/components/schemas/ApplicationSettingsNotifications"
},
"implicitAssignment": {
"type": "boolean"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationSettingsApplication
{
"properties": {
"url": {
"type": "string"
},
"acsUrl": {
"type": "string"
},
"orgName": {
"type": "string"
},
"buttonField": {
"type": "string"
},
"loginUrlRegex": {
"type": "string"
},
"passwordField": {
"type": "string"
},
"usernameField": {
"type": "string"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationSettingsNotes
{
"type": "object",
"properties": {
"admin": {
"type": "string"
},
"enduser": {
"type": "string"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationSettingsNotifications
{
"type": "object",
"properties": {
"vpn": {
"$ref": "#/components/schemas/ApplicationSettingsNotificationsVpn"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationSettingsNotificationsVpn
{
"type": "object",
"properties": {
"helpUrl": {
"type": "string"
},
"message": {
"type": "string"
},
"network": {
"$ref": "#/components/schemas/ApplicationSettingsNotificationsVpnNetwork"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationSettingsNotificationsVpnNetwork
{
"type": "object",
"properties": {
"exclude": {
"type": "array",
"items": {
"type": "string"
}
},
"include": {
"type": "array",
"items": {
"type": "string"
}
},
"connection": {
"type": "string"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationSignOnMode
{
"enum": [
"BOOKMARK",
"BASIC_AUTH",
"BROWSER_PLUGIN",
"SECURE_PASSWORD_STORE",
"AUTO_LOGIN",
"WS_FEDERATION",
"SAML_2_0",
"OPENID_CONNECT",
"SAML_1_1"
],
"type": "string",
"x-okta-tags": [
"Application"
]
}
ApplicationUpdateLogoRequest
{
"type": "object",
"required": [
"file"
],
"properties": {
"file": {
"type": "string",
"format": "binary"
}
}
}
ApplicationVisibility
{
"type": "object",
"properties": {
"hide": {
"$ref": "#/components/schemas/ApplicationVisibilityHide"
},
"appLinks": {
"type": "object",
"additionalProperties": {
"type": "boolean"
}
},
"autoLaunch": {
"type": "boolean"
},
"autoSubmitToolbar": {
"type": "boolean"
}
},
"x-okta-tags": [
"Application"
]
}
ApplicationVisibilityHide
{
"type": "object",
"properties": {
"iOS": {
"type": "boolean"
},
"web": {
"type": "boolean"
}
},
"x-okta-tags": [
"Application"
]
}
AssignRoleRequest
{
"properties": {
"type": {
"$ref": "#/components/schemas/RoleType"
}
},
"x-okta-tags": [
"Role"
]
}
| Version | Endpoints | Schemas | Ingested | Status |
|---|---|---|---|---|
| 2.16.0 | 341 | 532 | 2026-05-25 | current |
| 2.16.0 | 341 | 532 | 2026-04-16 |