However, for my app I want the user signing in to the react SPA to be authorising a backend service / daemon (for my app) to perform actions on their behalf against the graph api, even when they don't have the react SPA open and signed in. The backend is written in node.js sitting behind an api gateway. So I'm thinking there might be some way to pass the client side information / tokens across to @azure/msal-node so that the backend daemon can keep using the graph api on behalf of the user - but I can't find any information around this.
Is this possible? Can anyone point me at some material in the right direction?
Update: it seems to me what I'm trying to do is similar in intent to this section of this page: https://docs.microsoft.com/en-us/azure/active-directory/develop/msal-acquire-cache-tokens#advanced-accessing-the-users-cached-tokens-in-background-apps-and-services - sharing the token cache?