Identity and User Management
The use of OpenID, along with then the lack of ability to easily manage users and entitlements is a challenge.
In addition we should also consider supporting multiple IdP token acceptance by the platform to allow SaaS services to connect to OSDU platform and access authorized data. Abstraction of the enforcement of cross-cutting concerns such as Authentication thru a side-car or similar pattern can isolate this from the core business logic of OSDU services.