Prerequisites
- Okta admin access
- Lovable workspace Owner or Admin
Configure in Okta
1
Create an OIDC app
In Okta Admin → Applications → Create App Integration → OIDC - Web Application.
2
Redirect URI
3
Assignments
Assign the application to your users/groups who should access Lovable.
4
Grants and scopes
Ensure Authorization Code flow is enabled. Scopes required:
openidemail
5
Copy values to Lovable
In Okta, locate:
- Okta domain (issuer)
- Client ID
- Client Secret
Reference
- Redirect URI: https://auth.lovable.dev/\_\_/auth/handler
- Required scopes:
openid,email
Troubleshooting
Invalid redirect URI
Invalid redirect URI
Ensure the redirect URI exactly matches https://auth.lovable.dev/\_\_/auth/handler in Okta.
Email missing in profile
Email missing in profile
Grant the
email scope and ensure users have a primary email in Okta.