Sure, there are two possibilities. Either you could implement your own authentication provider which checks against your API or you use the credentials provider if you need password hashing on the Silhouette side. In this case the
AuthInfoRepository, which you must pass to the
CredentialsProvider, can make the API requests for you.