We have a SaaS product and want to add support for OpenID Connect (OIDC) login flow to allow easy login into our website using Okta etc. I was able to create an Application under my Okta dev account and got the clientID/clientsecret and tested the whole OIDC login flow and it works great!
Now what I’m confused about is which of the following ways its supposed to work in live environment?
I have to create an application and publish it on OIN, so clients can add it to their account? If so, would each client get his own clientID & clientSecret or would it be the same one for all?
Clients will create Applications in their own okta accounts and set clientID/secret on our website, then for each user logging in, our system will handle them accordingly using their provided client id/secret?