SSO를 사용하여 로그인할 때 API 액세스를 위한 자격 증명은 무엇인가요?

Thanks for the update 1187577408. 

How can I extract OAuth tokens for my users (zendesk agents) if they're all connected via SSO? I'm using Okta (SAML) to SSO into Zendesk. It's not possible for me to get the API tokens for all my agents. What is the best way to get the OAuth tokens for these agents? 

Note: I have a custom login, where my agents login using their OKTA credentials. I can hold these credentials and use them to get the Zendesk token as well, if there is a way to get my Auth token for the agent. (using their credentials) .

I followed this pattern  {email_address}/token:{api_token}, but I'm still getting CORS error. We're using an SSO option to authenticate. However, I couldn't find any specific issue as to what's going wrong. Can you please help? Let me know if any additional details required from my end.