As you’ve discovered, external auth only supports asUser() at the moment and the backend functions of Forge only support asApp().
It’s something we’re keen to support in future but we don’t have any current plans.
If your external API supports the client credentials flow perhaps you could store the credentials in Forge’s secret storage and use that from your backend functions?