We have a requirement to issue an access token after doing authentication with custom set of ruled. I have built an API that does the performs the required authentication. Now i need to issue a token and send the response. As of now i am calling the available OAuth endpoint "https://localhost:443/auth/oauth/v2/token" from the policy internally and sending the response of that to the consumer . I think this will add some amount of latency. Instead of doing so
Can i make use of "OTK Generate OAuth Token" Assertion to generate the token and form the response? What is the best way to do it?