Feature: Enhance token vault to maintain delegate access to any 3rd party API that support the OAuth authorization code flow.
Description: Right now I believe token vault will only maintain access tokens for specific IdP and API integrations supported by auth0. Can this behavior be expanded to allow auth0 to maintain access and refresh tokens for any 3rd party that provides OAuth authorization code flow - even if that 3rd party is not acting as the identity provider for a user.
Use-case: Our system integrates with our customers IdP for SSO login. Once logged in, a user may choose to extend the functionality of our platform by ‘linking’ their account with us to an account they have on another site. The other site supposed authorization code flow OAuth, so we can have the user login to the other site through our and we can obtain an access token - this is not uncommon. It would be great to have auth0 then be able to manage the access and refresh tokens for us securely so we can call the other site’s APIs to enhance the user’s experience on our site.