is grpc golang example ready

Question

< rp> is grpc golang example ready

rp · Answer

Hey

rp · Answer

I don t think we can directly support grpc cause we rely on cookies for sessions to work

aV · Answer

I have a 2 microservices ready in golang micro framework which relies on grpc What I want is that only logged in users can use the two microservices What should be the flow

aV · Answer

please guide

rp · Answer

Are those micro services being called by the frontend or another backbench service

aV · Answer

for now directly but in the future I am planning to use an api gateway that will proxy the requests Micro framework makes the services written available on single endpoint with different path Say localhost 8080 user and localhost 8080 profile If grpc was supported I would have made another service at localhost 8080 auth for supertokens

rp · Answer

hmm So our Auth APIs are all http

aV · Answer

Yes

rp · Answer

if you like you can enable JWT for our sessions and then send the JWT from the frontend to the grpc services

rp · Answer

i doubt it will be possible to do our access refresh session flows with grpc without lots of customisations

rp · Answer

so the best solution is to go the JWT route

aV · Answer

Micro exposes services at localhost 8080 as http consumption and localhost 8081 for grpc consumption Would it not be possible to expose supertokens at Port 8080 I suggest you to check micro dev first and see if something is possible otherwise I will go for the JWT route definitely

rp · Answer

it would be possible to expose supertokens on 8080

rp · Answer

butt he APIs for GRPC won t be able to do session verification in the default supertokens way

rp · Answer

so for those i suggested using JWTs

aV · Answer

Is there any security issue with this approach Also can you add an example implementing the same

rp · Answer

Security issues are the same as that that come along with using a JWT