From cf2e0c85f7f6aedbde1726c903bf7651836acb66 Mon Sep 17 00:00:00 2001
From: Prabhat Sharma <hi.prabhat@gmail.com>
Date: Mon, 30 Dec 2024 03:11:23 -0800
Subject: [PATCH] added sections

---
 ...=> token-exchange-and-service-accounts.md} | 22 +++++++++++++++++++
 1 file changed, 22 insertions(+)
 rename content/blog/posts/{token_exchange.md => token-exchange-and-service-accounts.md} (94%)

diff --git a/content/blog/posts/token_exchange.md b/content/blog/posts/token-exchange-and-service-accounts.md
similarity index 94%
rename from content/blog/posts/token_exchange.md
rename to content/blog/posts/token-exchange-and-service-accounts.md
index 39114cc..a3ada07 100644
--- a/content/blog/posts/token_exchange.md
+++ b/content/blog/posts/token-exchange-and-service-accounts.md
@@ -18,6 +18,28 @@ tags:
   - enterprise
 ---
 
+## Introduction
+
+Note: Applicable to enterprise version (Free to download and use if daily ingestion volume is under 200 GB)
+
+TODO: 
+
+- Why this blog? Calling APIs in SSO mode
+- How do we solve this? Through service accounts. 2 Scenarios
+
+### Making APIs accessible 
+TODO: Why service accounts?
+TOD: How OpenFGA fits in.
+
+### Local auth mode
+TODO: How does this work?
+
+### SSO mode
+TODO: How does this work?
+
+
+## What is token exchange?
+
 [OAuth 2.0 Token Exchange (RFC8693)](https://datatracker.ietf.org/doc/html/rfc8693) allows client obtaining a token in exchange of token acquired from same IdP or different IdP to access resources with newly acquired token.
 
 Token exchange is particularly useful in scenarios where token adaptation is required to meet specific access needs, such as: