Does the oauth auth endpoint send a wsfedp request to the idp registered with a verified domain (configured for azure ad)?
How does one indicate the verified domain to use assuming there are several (authz endpoint parameter extension perhaps?)
If the verified domain is already used in a office365 ad tenant, can one somehow assign that tenant to the azure subscription (and, now behaving as azure ad, offer oauth endpoints)?