The way we control access to recourses does not feel very scalable and flexible. We should rework that, as we will need it for the microservice architecture.
[x] There should be the following guards
[x] User
[x] Admin
[x] Anonymous
[x] User/Admin guards should use JWTs
[x] There should be an env variable to choose whether anonymous access is allowed
The way we control access to recourses does not feel very scalable and flexible. We should rework that, as we will need it for the microservice architecture.