Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Authentication #6

Open
ckoopmann opened this issue Apr 5, 2023 · 1 comment
Open

Authentication #6

ckoopmann opened this issue Apr 5, 2023 · 1 comment

Comments

@ckoopmann
Copy link
Collaborator

Eventually we want to be able to control access to some or all of the api endpoints for different users.

Therefore we will need to add some authentication / user management system.

I'd assume that we would use our own implementation based on JWT.
(found this video on working with JWTs in axum).

Open Questions:

  • Do we need this at all ? When ? Priority ? (or do we keep our api open for now)
  • Are there any "out of the box" solutions available that can make our life easer ?
  • Do we want to provide public endpoints for potential users to register / log-in / generate tokens ? (Or do we just generate those tokens ourselves and hand them out manually ? )
  • Token configuration (Do tokens expire ? )
  • Do we need multiple tiers of tokens / users ?
  • Do we want to have analytics / montioring of user activity ? (With the potential of rate limits etc ? )
  • Where do we store the data ? (same db as other services or do we spin up our own db specifically for user management ? )
@alextes
Copy link
Member

alextes commented Apr 5, 2023

Would probably start open actually, mostly because it is less work.

Great questions, going to leave them for now but these are the right ones.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@alextes @ckoopmann