Currently, the server and frontend use Okta for authentication which, while convenient for a prototype, is probably not a viable solution for production.
Potentially we could first refactor the server authentication using more general OAuth 2.0/OpenID libraries but still use Okta's servers and only make the switch afterwards, once the rest of the application is more mature.
A general focus should definitely be to keep the authentication as independent from Okta's APIs as possible to facilitate easy refactoring in the future.
Currently, the server and frontend use Okta for authentication which, while convenient for a prototype, is probably not a viable solution for production.
Potentially we could first refactor the server authentication using more general OAuth 2.0/OpenID libraries but still use Okta's servers and only make the switch afterwards, once the rest of the application is more mature.
A general focus should definitely be to keep the authentication as independent from Okta's APIs as possible to facilitate easy refactoring in the future.