@sgmeyer So i researched a bit more and maybe what i need is a Silent Authentication to check the current state of the SSO connection, is that correct or we dont have a way to know what the status of the 3rd-party account?
I saw this in the “GetUserInfo” remarks:
To access the most up-to-date values for the email or custom claims, you must get new tokens. You can log in using silent authentication (where the prompt parameter for your call to the authorize endpoint equals none)
does the Silent Authentication get updated custom claims if they exist or as stated below we always need to Log in again using the external IdP?
To access the most up-to-date values for standard claims that were changed using an external IdP (for example, the user changed their email address in Facebook)., you must get new tokens. Log in again using the external IdP, but not with silent authentication.