Genesys Cloud - Developer Community!

Is there a way to get tokens for the different authorized organizations your company is paired with? I was interested in adding something similar to the clients page that allows you to hop between orgs into one of my programs. I'm aware that an OAuth client can be placed in each org to allow this but I was hoping for something a little more dynamic that would no longer allow the connection if the pairing was removed.

Hi Michael.

Ideally you'd do this by creating an OAuth that uses PKCE Grant in your main org, and set up your app to use that. When the app authenticates a user (e.g. using SSO in the main org), if they have access to multiple orgs it will prompt them for which org they want to log into. If you choose a (client) org that you haven't logged into before, and you're an admin in that org, it will prompt you to confirm if you trust the application and are happy to grant the required scopes. Assuming you do, then the app gets added to the Authorised Applications in the (client) org.

At this point you can access the client org using your SSO account that you logged into from your main org. But if you revoke the Authorised Application in the client org, or remove the trust relationship between your main org and the client org, or if the user's access to the client org is removed, then they will no longer be able to use your app in the client org.

Does that give you the functionality you are looking for?

Nick.