The token is valid only for the service itself in case of the self-contained implementation
The same API can be used for token-based authentication with Zowe APIML provider (ZAAS)
Note:
Start simple - no JWT, just cryptographically safe randoms string, initially in-memory, later persisted
This is the building block for APIML-based authentication when the basic self-contained provider is replaced by calls to ZAAS just by the means of the API service configuration
The goal of this story is to enable developers who are using the SDK to use token-based authentication in their REST API services.
Note:
Requires #80