quick question about suggested/intended patterns for authentication of client requests…
if i’m using OAuth to secure my client requests (and to identify the user making requests and authorise them) is that something that Kalix can support? Or should it be done elsewhere (e.g. an API Gateway sitting in front of the Kalix backend services?
for instance, if i’m using Auth0 i can have my users sign-up and login on the client side application and configure callbacks into the Kalix service(s) to create the users there, but when those clients make calls to the backend to interact with my application can i, in Kalix services, get the token from the header, validate it, etc?