Hello,
I wish to implement the following architecture:
- My_IDP (implemented using Auhtlib) generate an access token using a custom grant
- The user sends this token in the security header as a Bearer token to API_A which then validates that token with Auth0
- Auth0 receives that token and validates it against My_IDP
I’m guessing that this architecture is possible since I noticed that:
https://auth0.com/docs/authenticate/identity-providers/enterprise-identity-providers/oidc
However Authlib doesn’t implement the Discover Endpoint (.well-known/openid-configurati_on) so I need to do it myself. What information does Auth0 requires from that endpoint so it can validate a token? Thanks