Persistent external OAuth token

We’re trying to build a Forge app that has Salesforce as an external provider for authentication. Question is - once we go through authorisation, can all our app users use the same token for interacting with Salesforce (at least until it expires)? What do we need to configure in order to achieve this?

Forge’s built in external OAuth 2.0 functionality only supports asUser fetch calls, meaning each user would need to authorise a connection to Salesforce.

If you want to use some shared credentials you could store them in Forge’s secret storage and manually add them to your fetch requests.

Can we still use the providers from manifest or does it have to be a completely custom solution?