We currently make a lot of use of openid clients, using the authorization code flow. After login, our proxy sees the code, exchanges that for the token and sets that token as a cookie.
However, I want to figure out how to get IDP initiated SSO working, and it doesn’t look like that works with openid clients, I would need to use a saml client.
So if I used a saml client instead of a openid client here, when a user logs in via sso, how do I get the token? Authorization code exchange is an openid thing only, so im not sure what the process is here for getting and using the token.