This introduces two new API clients, Auth0Client and SecretsClient (for Google Cloud Secrets).
The Auth0 client gets a short-lived token to use for API requests and stores it in a Google Cloud Secret named auth0_api_token (which is set up and permissioned already in prod and staging). When the token expires and we get a 401 from Auth0, we grab a new token and retry the API request.
This introduces two new API clients,
Auth0ClientandSecretsClient(for Google Cloud Secrets).The Auth0 client gets a short-lived token to use for API requests and stores it in a Google Cloud Secret named
auth0_api_token(which is set up and permissioned already in prod and staging). When the token expires and we get a 401 from Auth0, we grab a new token and retry the API request.