For better usability when configuring the OAuth 2.0 token exchange flow, define and enable OAuth 2.0 token exchange handlers in Setup instead of using Metadata API. Create a handler definition, link it to an Apex class, and set some of its properties, such as what types of tokens it supports and whether it can create users.
Where: This change applies to Lightning Experience (not available in all orgs) in Enterprise, Performance, Unlimited, and Developer editions.
Why: The token exchange flow simplifies your integration patterns for use cases that include a central identity provider, such as Okta, along with multiple service providers and microservices.
How: From the Token Exchange Handlers page in Setup, define and enable the handler. The ability to edit the handler in Setup isn’t currently supported. To edit its definition, use Metadata API.