I’m working on a new application where we own the front end and backend. I’ve created the okta config using SPA with authorization with pkce grant flow for front end and client credentials flow for backend java (both OIDC).
Once I get the id token and access token in react using sdk, how to authorize the jwt token?
Do I need to use aws gateway to authorize it or it can be done in backend using any server side language like JAVA.
We have multiple consumers who will use our backend along with us so want to know what is the correct way to approach this scenario.