Hi there, I'm fairly new to concepts around authentication and OIDC in particular, and so I'm looking for help around integrating external JWT signers. I might be completely misunderstanding its purpose so please feel free to correct me there too:
-
Is it possible to use OIDC for applications that are using the SDKs directly? For example, if I have a web server that needs to send traffic over the ziti overlay and I build the transport using the openziti SDK, is it possible to not use the identities generated directly via the controller and use external auth instead? From, here, it looks like this might only be possible via the tunnelers and not an application that is built using the SDK.
-
For the tunnelers, if we take the ziti-edge-tunnel on Linux as an example, again please pardon my ignorance: This doc helps providing details on gathering the right config of a deployed OIDC service, but I can't seem to find documentation or an example on how to actually configure a tunneler to use this configuration. The example here provides a way to test it, but again how would I go about integrating it either in a tunneler or in an SDK-based app if that's possible.
Thanks for the help!