Allow signed JWT Bearer token flow (get user access token without password / SAML)
We will need Oauth support to get user access token without having to provide the user name password or saml assertion from ADFS.
The trust would be the certificate trust.
Other implementations from other vendors -
https://tools.ietf.org/html/rfc7523
- Google https://www.jhanley.com/google-cloud-creating-oauth-access-tokens-for-rest-api-calls/
Refer to --
def createsignedjwt(pkey, pkeyid, email, scope): and
exchange that for the user access token in
def exchangeJwtForAccessToken(signedjwt):
Docusign https://developers.docusign.com/esign-rest-api/guides/authentication/oauth2-jsonwebtoken
