Authentication with K2 API (rest & oData) with users provisioned via SCIM
The new SCIM IDP provides the possibility to provision users with K2. As a result, AAD is not necessary anymore as users can be provisioned from Google, for instance.
However, for authenticating with the K2 API's, e.g. Workflow, OData authentication is only possible using Basic Auth with AAD users.
I.e. an AAD account needs to be maintained only for being able to use K2 API's.
This includes a 100% backend based logic which would eliminate any manual work to generate the initial API tokens.