OAuth

How to implement one authorization service?

Hello.
There is a project on Laravel, another one will be developed. What is common between them is users (corporate), there is no registration.
You need a single point of entry through which users will log in and access other applications. You also need to issue access rights (roles) to users from one place, and not in each project separately.
Implementation:

• Deploy another Laravel project by installing Laravel Passport, redirect to it, log in, get a token. In the same project, implement an admin panel for issuing roles
  

Questions:

• How to configure other projects for this authorization method?
  

Install Laravel Socialite on them and write your provider? By type of authorization via github, google?

• What to do after receiving the token?
  

In the Socialite implementation examples, after receiving the token, a user is created (if it does not exist) and logged in.
But then each project has its own table with users, although in fact they are the same. Is this true in my case? And how are they then given roles?
In an already existing project, the laravel-permission package is used for roles, what should we do now? Use Token Scopes?
And the main question is, am I thinking in the right direction?