Similar to Federation across accounts I’m putting together a design where I have two logical applications/APIs and I want to understand if I can allow a logged in user from Tenant A to be considered logged in/authenticated in Tenant B so that the user can request delegated authorisation to an API “hosted” in Tenant B (via
/authorize with the appropriate
Ideally what I would like to do is to POST the ID token from Tenant A to Tenant B to federate the login, then request the authorisation. Is something like this possible? From my reading of the docs, it seems federated login is only possible with SAML, not OIDC but I might be wrong.