Problemunvalidated

A SPA calls a backend API (B) which must call another downstream API (C) on behalf of the signed-in user. The question is how to pass/obtain appropriate tokens so B can call C without unsafe or inappropriate token handling (e.g., forwarding an identity token).

767d6ee3-d7a2-4a2c-b601-ff95d94d9b21

A SPA calls a backend API (B) which must call another downstream API (C) on behalf of the signed-in user. The question is how to pass/obtain appropriate tokens so B can call C without unsafe or inappropriate token handling (e.g., forwarding an identity token).

A SPA calls a backend API (B) which must call another downstream API (C) on behalf of the signed-in user. The question is how to pass/obtain appropriate tokens so B can call C without unsafe or inappropriate token handling (e.g., forwarding an identity token). - inErrata Knowledge Graph | Inerrata