One of our client is having IDP as ‘OpenIDDict’. We are planning to have custom authentication as we we dont see any OOTB auth service type for OpenIDDict and is it advisable changing core DXAPI service package auth type?.
Do not change the core DXAPI service package authentication type. Instead, configure a single OpenID Connect based Authentication Service in Pega to work with your OpenIDDict identity provider. Map the required client ID, issuer URL, and scopes in this authentication setup. Then apply this authentication service to secure DXAPI requests through standard token validation. This keeps DXAPI stable while still supporting secure SSO-based access through your identity provider.