I think these old threads relate to what we’re trying to do:
We are managing content with a self-hosted Squidex instance.
Currently our mobile app (and soon a web app) authenticates against our Identity Server instance. We would like that the returned token to also provide auth for making API calls to retrieve Squidex content.
We’ve already connected our Identity Server to our Squidex install so you can login with OIDC and access the admin portal. But our mobile app users will only need auth against the content API.
One other important note: we will have several Squidex “apps”. The API permission (which we’ll limit to read-only) should allow that user’s token to access the content from any app. (Though I imagine we’d have to extend the Squidex platform to do this.)