mammoth-telephone-17373
03/03/2023, 6:07 PMbearer_token
strategy. Completely possible there is another way to do this that involves actually generating "identities" for each service. In any case, I need a straightforward way to be able to generate auth tokens (or tuples, client_id
and client_secret
is fine) for services to be able to talk to one another, and these tokens should be valid until revoked. Each service that needs to check auth runs an Oathkeeper sidecar that should turn all available auth methods into JWTs for it to consume.