Sorry for the late response, we’re a bit time-constrained (who isn’t, amirite?).
Our use case is the following:
We’re a feature team that has to integrate with a specific Identity Provider (from belgian government), so our application can be allowed to send data over their service bus. This service bus is another constraint our application needs to adhere to since we’re sending confidential data to be shared with other government instances and health providers.
Our application redirects to their IDP so we can get an access token, which we then can exchange for a SAMLToken that we can use to call their service bus.
This IDP works exclusively with RFC7523 authentication, but the company behind it isn’t very responsive, so we were looking for alternatives to try and get some early feedback on whether or not our implementation on our end would work (like I said, we’re a bit time-constrained).
Eventually we set up our own KeyCloak instance that we managed to configure with RFC7523 etc. and got our early feedback that way.
So specifically, the need for us was to get a temporary IDP that supports RFC7523 so we could test our own implementation against it. There are no future plans to move to auth0 for example where RFC7523 is a requirement.
Sorry again for the late response.