we have installed OTK in the gateway with Dual GW scenario. Please share your response on below:
1. when I say oidc and oauth, does it mean that we have to create separate authorization, token and user-info endpoints for oidc and oauth ? or single set of these api will achieve authentication and authorization ?
2. Our APIs support OIDC (Authorization Code) and OAuth 2.0 framework. can you please share step by step development example to achieve this. I mean assertions and sequence in the policy, etc. A complete example please
Your quick response is highly appreciated.
------------------------------
Sachin
Tech Lead
------------------------------