Setup Guide
Setup Okta SSO
To manage access and authentication to SELECT using your Okta account, please follow the steps below.
Step 1: Create App Integration
Launch the create app integration flow in the Okta console.

Select OIDC for the sign-in method, and web application as the application type.

On the next page, set the app name to SELECT. Check all the grant type boxes so that they match the screenshot below. Set the sign-in redirect URI to https://auth.select.dev/login/callback
.

On the next page, scroll to ‘General Settings’ and click ‘Edit’. Under ‘Login’, set the ‘Login initiated by’ dropdown to ‘Either Okta or app’. Under ‘Application visibility’, check the box next to ‘Display application icon to users’. Set the initiate login URI value (LOGIN_URI in the screenshot) to https://select.dev/api/auth/login?organization=ORGANIZATION_ID
. The value for ORGANIZATION_ID
will be supplied by the SELECT team.

Set Federation Broker Mode to Disabled to ensure that the app tile shows up for users. Add the required assignments under the ‘Assignments’ tab at the top of the page.

Step 2: Send information to SELECT team
Once complete, let the SELECT team ([email protected]) know the following values:
- Client ID and secret for the newly created application integration
- The Okta domain. This is usually the domain found by clicking your email address in the top right, as shown in the below screenshot. If you've configured the app to use a custom domain, however, please specify that instead.
