working on next post

Author: mattmakai

README.md

@@ -7,6 +7,7 @@ Posts and associated code:
 
 |Post|Code Directory|
 |---|---|
+|[How to Add User Authentication to Flask Apps with Okta](https://www.fullstackpython.com/blog/add-user-authentication-flask-apps-okta.html)|[flask-auth-okta](./flask-auth-okta)|
 |[Running Bottle Apps in Docker Containers on macOS](https://www.fullstackpython.com/blog/first-steps-bottle-web-apps-docker-containers.html)|[docker-bottle-mac](./docker-bottle-mac)|
 |[How to Add Maps to Django Web App Projects with Mapbox](https://www.fullstackpython.com/blog/maps-django-web-applications-projects-mapbox.html)|[maps-django-mapbox](./maps-django-mapbox)|
 |[Full Stack Python at PyCon US 2018](https://www.fullstackpython.com/blog/full-stack-python-pycon-us-2018.html)|No code in post.|

flask-auth-okta/app.py

@@ -0,0 +1,29 @@
+from os import environ
+from flask import Flask, Response
+
+
+app = Flask(__name__)
+app.config["DEBUG"] = True
+# secret credentials for Okta connection
+app.config["OIDC_CLIENT_SECRETS"] = "client_secrets.json"
+app.config["OIDC_COOKIE_SECURE"] = False
+app.config["OIDC_CALLBACK_ROUTE"] = "/oidc/callback"
+app.config["OIDC_SCOPES"] = ["openid", "email", "profile"]
+app.config["SECRET_KEY"] = environ.get("SECRET_KEY")
+app.config["OIDC_ID_TOKEN_COOKIE_NAME"] = "oidc_token"
+# instantiate Open ID client to handle user session
+oidc = OpenIDConnect(app)
+# Okta client will determine if a user has an appropriate account
+okta_client = UsersClient(environ.get("OKTA_ORG_URL"),
+                          environ.get("OKTA_AUTH_TOKEN"))
+
+
+@app.route("/lair")
+def lair():
+    return Response("Thundercats (supposed to be hidden) lair.")
+
+
+@app.route("/")
+def landing_page():
+    return Response("Thundercats, Thundercats, hoooooooooooo!")
+