We have our AEM environment OOTB SAML integrated with DUO security and we have requirement where a new external application needs to access certain AEM's services. To perform this, a session needs to be established(?) and the expectation is that this external app should first get authenticated against DUO and then request resource from AEM. Here Duo is OAuth provider and AEM is OAuth client.
Can someone help with any resources to begin with?
If you are planning to use external OAuth provider to access content in AEM, you have to write a bit of custom code, do check the below link. AEM does have a better integration with SAML for this. Check the below blog for the custom auth handler