Closed lukas-kratochvil closed 5 months ago
Implemented fetch decision on the frontend. But server doesn't call MAFILDB API yet - need to think about the service account auth. Server just uses dummy JSON with the same data as provided by the MAFILDB API /languages endpoint.
We will have access to GET /languages endpoint in the MAFILDB without the OIDC access token. So we don't need the service account and server-part solution. We always call this endpoint directly with or without an access token.
Unauthorized part of the app Call our server that will use the service account to call the MAFILDB API endpoint and get the data for the web.
Authorized part of the app Call the MAFILDB API endpoint directly with the logged-in operator's OIDC access token.