Okta
Okta is a platform in the Identity-as-a-Service (IDaaS) category. Okta features include Provisioning, Single Sign-On (SSO), Active Directory (AD) and LDAP integration, the centralized de-provisioning of users, multi-factor authentication (MFA), mobile identity management.
About
Okta is a platform in the Identity-as-a-Service (IDaaS) category. Okta features include Provisioning, Single Sign-On (SSO), Active Directory (AD) and LDAP integration, the centralized de-provisioning of users, multi-factor authentication (MFA), mobile identity management.
Categories: Authentication
Quick facts
Detection methodology for Authentication
Auth providers expose a script SDK and (usually) a hosted login endpoint. Auth0's `@auth0/auth0-spa-js` plus `*.auth0.com` redirects; Clerk's `@clerk/clerk-js` plus `clerk.<account>.lcl.dev`; NextAuth's `next-auth` package plus the `/api/auth/...` route handler. We catch each via the bundle and the network requests, plus the exact SDK version from the sourcemap.
How we detect Okta
Each signal alone is rarely conclusive — Sourcemap Explorer cross-references all of them and weights by confidence. You can reproduce any of these checks yourself in Chrome DevTools.
Window-level global the technology installs on page. Reproducible by typing the path into the DevTools console.
window.OktaAuth
window.isOktaEnabled
window.okta.cdnUrlHostname
window.okta.locale
window.oktaCurrentSessionUrl
Script URL pattern. Typically a CDN host or chunk path that ships with the technology.
oktacdn\.com/.+/([\d.]+)/
FAQ
How do I check if a website is using Okta?
Open the page in Chrome, click the Sourcemap Explorer toolbar icon, and read the Stack tab. The popup matches Okta's fingerprint signals (response headers, asset URL prefixes, runtime globals, sourcemap paths) and flags it whenever any combination is found. The same checks can be reproduced manually in DevTools — see the "How we detect" section above.
What Okta version can Sourcemap Explorer detect?
Okta ships as a hosted authentication rather than a bundled npm package, so version-specific detection isn't always possible. Where the platform leaks a version in response headers (`X-Powered-By`, `Server`, generator meta tags) we surface it; otherwise we report presence only.
How much does Okta cost?
Okta's pricing model is documented as: poa, freemium, recurring. Detection is independent of the pricing tier — Sourcemap Explorer flags the technology by its fingerprints, regardless of which paid plan a site is on. See the official site for the current pricing page.
Where can I read more about Okta?
Official site: https://developer.okta.com. For Sourcemap Explorer's detection guide, see the deep-dive link below or the related guides in the cross-link section.
Keep reading on Sourcemap Explorer
Practical guides
Detected by Sourcemap Explorer
Open the popup on any page running Oktaand you'll see the exact version pulled from the bundled package.json when sourcemaps are exposed.