I would be very grateful if you could advise me on one technical issue. I need to write an authentication service (id.domain.com) for several web sites (site1.domain.com, site2.domain.com etc., one of the sites is already running in production). I read about OpenID, SSO, jwt, but I still do not have a complete picture.
If user has account in id.domain.com, he should be able to login to all sites (site1.domain.com, site2.domain.com etc.), once agreeing to share user data for each site. Profile changes can only be made in id.domain.com.
I would like to use ready-made libraries (maybe django-oidc-provider) to speed up the process. In which direction should I move?
Thank you for your time and help.