We have got a requirement to implement SSO(not SAML/LDAP). Client has its own system called XYZ which acts like an IDM. Through IDM, Pega URL is called along with a token. There are internal services built to validate the token and return the operator profile. To get started, I have saved as existing oAuth authentication service (authentication type as oAuth) and modified the auth activity to make the service calls. Need help on updating the web.xml file servlet mapping. Is there anything else that we have to do to implement the same?