07/28/2022, 3:19 PM
Hey guys, I'm looking to see if spicedb supports out-of-the-box integration with Auth0 specifically for M2M authentication for requests to spicedb (i.e. authzed.api.v2.*) itself. We are currently using a pre shared key, but this isn't very secure, especially as our number of micro-services grows... I think (I would like to be wrong!). I was thinking of creating a proxy micro-service in front of spicedb to perform the token validation before forwarding the request to spicedb, but then I'd just create a bottleneck and loose so many of the benefits of spicedb. Do you guys have any suggestions?