one sees a sensible Fiddler trace.
one sees the final phases of the oauth2 handshake with an AS augmented with the ability to do websso with an IDP. One sees several calls to the services of the odata source, each of each of which have an authorization header in the HTTP request, populated with the access token obtained form the oauth2 handshakes.
I think Ive also learned the right mental model, for the credentials (and stored tokens) associated with any given data source. One can regenerate the access tokens, per source.
in our trial, we simply signed in as a different Netmagic user – i.e. different CRM netmagic-linked user.