I have this Auth0 auth example working: [url removed, login to view]
And I would like to quickly learn how to use Auth0 to support these auth scenarios:
- Web client / jwt cookie based auth (already working in above example).
- Access private endpoint from a separate microservice via an API as explained here [url removed, login to view]
- Granting access to the endpoint to an untrusted developer. How best to issue issue keys, etc.
In summary, please explain the best practices for client auth, internal microservice auth and external API auth with AUth0 with these examples. Links / references to Auth0 docs would be helpful.
I am using the Serverless framework ([url removed, login to view]) and would like to keep the examples examples using this. I would like you to build out each of these 3 scenarios shown above, then walk me through the code to explain how it works. Please also send me your working code.
I could eventually figure this out from the docs, but would rather pay for some of your valuable time since you've already learned these lessons.
To apply, please answer this question:
Briefly explain why jwt works so well in stateless systems.