As of now, we're doing a simple jwt-based authentication -- PR #4. All the endpoints will require tokens to get the access. And the tokens could be genrated with custom login endpoint.
Few things to watch out for:
Do we need roles?
Do we need to persist users in a new table?
If so, what endpoints are globally accessible and what are not?
My thinking is to make jwt-based auth. However, token could be generated per-user from UI.
As of now, we're doing a simple jwt-based authentication -- PR #4. All the endpoints will require tokens to get the access. And the tokens could be genrated with custom login endpoint.
Few things to watch out for:
My thinking is to make jwt-based auth. However, token could be generated per-user from UI.
cc: @ub0005 @smarru