We have our AEM environment OOTB SAML integrated with DUO security and we have requirement where a new external application needs to access certain AEM's services. To perform this, a session needs to be established(?) and the expectation is that this external app should first get authenticated against DUO and then request resource from AEM. Here Duo is OAuth provider and AEM is OAuth client.
Can someone help with any resources to begin with?
The AEM OAuth server functionality support this directly(AEM as a OAuth server) - Refer https://youtu.be/kk945DABg8Y for more details
Refer https://medium.com/@techforum/social-login-with-linkedin-adobe-experience-manager-aem-53c38ce22780 if you want to enable custom OAuth provider integrations(AEM as OAuth Client)
If you are planning to use external OAuth provider to access content in AEM, you have to write a bit of custom code, do check the below link. AEM does have a better integration with SAML for this. Check the below blog for the custom auth handler
AEM provides an OAuth client as well. But it needs a custom extension for each provider. You can check Out-of-the-box implementations for Twitter and Facebook available at https://docs.adobe.com/content/help/en/experience-manager-65/communities/administer/social-login.htm....