Step 1) Setup an oAuth loop to get a token for yourself that will read subscribers
Step 2) Store that token and the refresh token in a database
Step 3) user logs into your website as them
Step 4) use the users token to get their user ID
Step 5) call the subscribers API with their userID and your userID (as the broadcasterID) but your oAuth token that you load up from the database.
You would store your oAuth token (and refresh token) in a database and recall it/refresh it as needed.
You have all the right parts. You just didn’t connect the dots.
The token you generate for yourself will be valid for four hours, but because you have a refresh token, you can refresh it as needed whenever you need it. Then store the new token back in the database for later use.
No you just have to login/create your oAuth token with subscriber access whenever the refresh token procedure fails, which should only be if you disconnect your own app, or your reset your password.