Okta: Node & Edge Schema
Node Types
The following types of entities are imported from Okta and represented as nodes in the graph:
| Node Type | Description |
|---|---|
User | Okta user account |
Group | Okta security or distribution group |
Role | Standard Okta administrative role |
OktaApp | Application object managed or assigned via Okta |
Edge Relationships
| Edge Type | From Node | To Node | Description |
|---|---|---|---|
IS_MEMBER_OF | User | Group | Indicates that a user is a member of a group |
HAS_MEMBER | Group | User | Inverse of IS_MEMBER_OF |
HAS_ROLE | User | Role | Indicates that a user has an assigned Okta role |
HAS_ROLE | Group | Role | Indicates that a group has an assigned role |
IS_ROLE_OF | Role | Group | Inverse of HAS_ROLE; shows which group a role belongs to |
These edges allow for traversal from users to groups and vice versa, enabling access modeling and group membership analysis.
Example
Here’s an example of how Okta entities may be modeled in the identity graph:
(User)-[:IS_MEMBER_OF]->(Group)
(Group)-[:HAS_MEMBER]->(User)