We are successfully using linkerd to route our gRPC requests to a microservices structure of gRPC servers. However, currently each service needs to individually handle authorizing the request before returning any data by sending the token to the auth service.
We are looking at moving that authentication logic to one central place. Linkerd seems like a logical place for this to happen. Is this assumption correct, or is that the wrong job for what linkerd is trying to solve?
Also, I have been researching linkerd plugins, and that looks like a good place to start. But I want to make sure I don’t reinvent the wheel if there is already an auth linkerd plugin available to use.
If I indeed need to create a custom plugin, would the identifier be the correct choice? I see a plugin classifier example in Java, but not for identifiers. Are there any resources I should be checking out for writing Java identifier plugin, if that is the correct plugin type?
Thanks for your time!