Overview of the Feature Request

Dataverse already allows users to register and sign in using OIDC. To access Dataverse APIs, these users must still generate and send a Dataverse API key. Instead, we would like them to be able to access the APIs using OIDC bearer tokens.

What kind of user is the feature intended for?
(Example users roles: API User, Curator, Depositor, Guest, Superuser, Sysadmin)

API users

What inspired the request?

This would simplify the integration of e.g. SPAs with Dataverse when users sign in via OIDC.

What existing behavior do you want changed?

Any brand new behavior do you want to add to Dataverse?

OIDC users should be able to access Dataverse APIs by sending an OIDC bearer token in the Authorization header instead of sending their API key.

Any related open or closed issues to this feature request?

#7005 proposed using OAuth 2.0 bearer tokens for API auth.

text written by @vera