I have an application that uses OAuth to authenticate against a 3rd-party OAuth Provider. It also uses basic auth\\ to allow for superuser access in case there are ever issues w