In step 5 The application server receives the secret key from the authentication server when the application sets up its authentication process.
How exactly this process works? I don´t understand how it can be done. I´ve been reading that this process of sharing the secret key must with microservices by generating the secret key and save it as environmental variable. Then each service will have access this variable. But it only works with services that live in the same environment system. Maybe it will work in a central database but I´m not sure.