Hi everyone. I have a question regarding IDP integration with Medplum. Is redirect-based flow (e.g., OAuth2 authorization code flow) mandatory for integrating an external identity provider (IDP)? Or is there a way to complete the IDP integration fully within the same domain, without needing a redirect? Would appreciate any guidance or best practices. Thank you!

Yes! Using Token exchange: https://www.medplum.com/docs/auth/methods/token-exchange