I've below usecase to be implemented :
A User should be able to login through External IDP's authorization_code grant flow into Service provider configured in WSO2 Identity Server -> This requirement has been achieved by adding External IDP & Configuring it as Federated authenticator in Service Provider.
Post login, We also want to persist External IDP's user access_token. So that we can invoke the external user specific APIs. Tried below approaches:
- Tried to publish External APIs in WSO2 API Manager, But in order to access the external API/resource we need current user's access token. As we can either configure Client Credentials/Resource owner password grant types which will either authorize a application or a specific user. But our usecase doesn't limit to specific user.
WSO2 APIM Endpoint Security Configurations
Would like to know how can I achieve my requirement by leveraging WSO2 IS & WSO2 API Manager(Only If required).
Any possible solutions around this requirment highly appreciated. Thanks in advance.
Environment WSO2 IS -> v5.10.0 WSO2 API Manager -> v3.2.0