We have a mobile application in android,we are using WSO2 API Manager 2.0.0 and WSO2 Identity Server 5.2.0 for API management that will be consumed by Mobile Application. We have configured Identity server as Key store.
My question:- Is it necessary that we need to store end user details in user store for providing access token? Or the Mobile application can store the consumer key of the application that has subscribed to APIs needed by the mobile application i.e End user details are not stored in User store of Identity server.
