Our community is invite only and we want to keep it this way, but we also want to allow a user that has an specific role in our main app to be able to bypass the invite process and sign-in into our Discourse. So I can’t use SSO and the normal OAuth flow won’t work for signups.
I turned our main app into an OAuth provider and wrote the plugin to let people sign-in with their credentials from the main app and seems to work. Problem now is to figure out what to do with the signup flow. I’m looking into the API and going to try to keep both DBs in sync.
Has anyone tried something like this before? Is the API flow + OAuth the best approach?