No support for runtime-resolved OktaOAuth2Properties

[pivovarit]

I'm submitting a

• bug report

Background info

I want to resolve Okta credentials when my application is initializing.

In order to achieve this, I'm wiring my instance of OktaOAuth2Properties instead of relying on it being created from application.properties:

@Bean
@Profile("prod")
public OktaOAuth2Properties oktaConfig() {
    // fetch config from somewhere

    properties.setClientId(config.clientId());
    properties.setClientSecret(config.clientSecret());
    properties.setIssuer(config.baseUrl() + "/oauth2/default");
    return properties;
}

This does not work as intended and I get complaints in logs:

[ main] ironmentPostProcessorApplicationListener : Your Okta Issuer URL is missing. You can copy your domain from the Okta Developer Console. Follow these instructions to find it: https://bit.ly/finding-okta-domain

To fix this add the `okta.oauth2.issuer` property to your application environments.

Expected behavior

All properties should be read from the OktaOAuth2Properties bean

What went wrong?

[ main] ironmentPostProcessorApplicationListener : Your Okta Issuer URL is missing. You can copy your domain from the Okta Developer Console. Follow these instructions to find it: https://bit.ly/finding-okta-domain

To fix this add the `okta.oauth2.issuer` property to your application environments.

Steps to reproduce

Create an empty project and wire your OktaOAuth2Properties instead of using application.properties

SDK Version

com.okta.spring:okta-spring-boot-starter:3.0.3

[arvindkrishnakumar-okta]

Thanks for posting!

You should ideally be using config.getIssuer() instead of config.baseUrl().

[pivovarit]

I'm doing that in the production code - this is just an example. The problem is in runtime resolution and not in the content of okta.oauth2.issuer. I managed to work it around by setting properties using a custom EnvironmentPostProcessor, but I believe users should not be forced to do this