External systems accessing the application

[sroeger]

This issue is taken from a TODO in the sample application in UserProfile in order to clean up the code.

This is the interface for the profile of a user interacting with this application. Currently this can only be a {@link io.oasp.gastronomy.restaurant.staffmanagement.dataaccess.api.StaffMemberEntity} however in the future a customer may login and make a reservation, etc.
TODO: Also an external system may access the application via some service. Then there would be no user profile or it would be empty...

[hohwille]

IMHO this one has been neglected for far to long. We should find a clear strategy for authentication and suggested solution to deal with web-frontend and also B2B/backend-communication (microservices, etc.). IMHO best practices are already available from projects and we only need to commit to a solution and get it into action to get out of this messy state here.

[hohwille]

I will better do a review on MTS regarding this and see if there is much left to do or we could also close this one...