We currently have a SAML app setup that allows users to authenticate to it via SAML, it does not support OIDC. The user authenticates to the app and everything is great. But the app also needs to be able to get an access token from an auth server containing the authenticated users information. The app will then use this access token to make subsequent calls to an API.
We could in theory just generate a client id and secret for machine to machine authentication and then the application can get a token back. But the token will not contain the authenticated users information which the API is expecting in the access token.
Is there some other way to get an access token from an auth server containing user information?