OIDC authentication is being introduced in Notifications for service to service calls with:

• RBAC (already used in stage and prod)

We need to update IQE tests to include ODIC authentication in addition to PSK authentication. PSK is not removed yet so both authentication methods should be tested ideally.

Eventually, each client service (from an OIDC perspective) will be identified by a unique service account that will be used for all communications with other services. The client ID and secret from that service account will be securely stored in the vault and loaded at runtime through OpenShift secrets.

Acceptance criteria:

• Requests from Notifications to RBAC are tested in IQE using OIDC.