Hi Martin,
Hope it’s ok to open up this old thread again. I understand that API client should call the TIB to obtain access_token but I’m not grokking how gateway verify the validity of the access_token. Does it go through TIB? Do we always call TIB? From your respond above, it seems like you have to call your gateway once you obtained the access token? Then how will it talk to the existing identity provider.
Thank you!