The situation is as follows: We are using Okta as the identity provider for Single Sign-On (SSO) in Salesforce and another internally developed app.
The requirement is as follows: When a user logs into Salesforce, there is an LWC component that, through Apex, needs to make an API call to the other app. This request originates from the Salesforce server, not the user’s browser.
What I need to know is whether there is a way for this API call to be authenticated by Okta on behalf of the user who has already logged in through SSO into Salesforce. If this is not possible, what other alternatives do I have to use Okta to authenticate with the other app?