I'm looking to create an application with both provider-level access and system-level access. I want EMR users (providers) to be able to launch my application with patient context to see a certain patient's data in my application, and I want my application to have its own method of updating all patients' data on a scheduled basis.
I currently have a production system account linked to a system-level app, which I can use to make FHIR requests in the sandbox. How can I use my production system account in a provider-facing application and still be able to get an access token via the backend?