I'm new here. We have an internal-facing React web app in a SAML/SSO enterprise environment that is based on Okta authentication and session management. How challenging is it to have this same web app to offer existing Okta authentication for one user population, but also have a new user population powered by passwordless. Would we likely need to replace the session management for the whole app?