Hi,

we will need to develop an integration between adobe commerce cloud and AEM cloud using commerce integration framework (CIF) .
From the reference implementation ( venia store) I see that all is passing through Magento graphQL.
Authenticated requests from the react PWA are used to login, use shopping cart, checkout.
I see that graphQL is handling authentication by generating a customer token using username and password.
Any suggestion on how this would be used in case users are handled by an external Oauth Identity provider like azure AD B2C.
We would not have any local magento user.
Could the user be logged on azure AD , get a session on Magento and then would the magento session ( PHPSESSID) be enough to use authenticated graphQL calls without requiring explicit username and password?
Can anyone refer any experience on this?

Thanks