I have 3 okta apps setup.
- Okta app for backend
- Okta spa app
- Okta web app
The Okta spa app is able to use the access token it got and pass to Okta app for backend and the token is validated. However, the Okta web app access token when passed to Okta app for backend, could not be validated, thus token is not valid.
Anyone know the proper setup for the Okta web app so where its access token can be validated against the Okta app for backend?