I have third party application that want to access our K2 Form without showing login page to access it. The plan is to build a custom REST API, where the third party app will put some URL in their page and that URL will then call our custom REST API which will authenticate the user from the third party app to be able to sign in to K2 Form without accessing K2 login page first.
I have read the documentation about Claim Based Authentication where it will allow third party app to access K2, but it only shows concept on how it works. I am new to this CBA technologies, so is there any documentation that is more technical on how to build one? or is there any alternatives to achieve this?