feat(router): Unify Auth in single layer (V2) #7037

AnuthaDev · 2025-01-15T07:02:33Z

In-efficiency in design

Currently we have many types of auth and auth is evaluated in multiple places, with multiple ways.
This indeed required multiple approaches and solution needs to be maintained
More cognitive load
We can’t authenticate a request in one infra component/layer

Unify Auth in single layer

Make Authentication header like,
- authorization: key=value, keyN=valueN
- Examples:
  - authorization: api-key=
  - authorization: publishable-key=, client-secret=
  - authorization: publishable-key=, ephemeral-key=
  - authorization: jwt=
Lineage also should be added in headers, when we can’t inferable from authorization
- profile_id should be added in headers not in body
- If api-key not passed or the passed api-key has different scope, then merchant-id also should be passed.

The text was updated successfully, but these errors were encountered:

AnuthaDev changed the title ~~Unify Auth in single layer (V2)~~ feat(router): Unify Auth in single layer (V2) Jan 15, 2025

AnuthaDev linked a pull request Jan 15, 2025 that will close this issue

feat(router): [V2] Introduce V2Auth and use it for payment_methods_list_enabled #7038

Draft

14 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(router): Unify Auth in single layer (V2) #7037

feat(router): Unify Auth in single layer (V2) #7037

AnuthaDev commented Jan 15, 2025

feat(router): Unify Auth in single layer (V2) #7037

feat(router): Unify Auth in single layer (V2) #7037

Comments

AnuthaDev commented Jan 15, 2025