We have an ASP.NET Web API application which uses the OktaWebApi library for authentication. There is a corresponding Service application in Oka for it, and using its ClientId and ClientSecret we are able to get an access token and successfully reach Authorized endpoints.
We also have an ASP.NET MVC application, which uses the OktaMvc library for authentication. There is a separate OAuth application in Okta for it, and we can login to it successfully.
The MVC site needs to make calls to the Web API, and we can do it successfully using ClientId/ClientSecret, however, we want to get an access token for the Web API based on the current user logged in to the MVC site.
Is this possible? And if so, can someone point me in the right direction of where to find the needed information for how to achieve it?