feat: add external authorization service (authzd) with JWT authentication

- Add new authzd gRPC service implementing Envoy's external authorization API - Integrate JWT authentication filter in Envoy configuration with claim extraction - Update middleware to support both cookie-based and header-based user authentication - Add comprehensive test coverage for authorization service and server - Configure proper service orchestration with authzd, sparkled, and Envoy - Update build system and Docker configuration for multi-service deployment - Add grpcurl tool for gRPC service debugging and testing This enables fine-grained authorization control through Envoy's ext_authz filter while maintaining backward compatibility with existing cookie-based authentication.
author: mo khan <mo@mokhan.ca> 2025-05-20 14:28:06 -0600
committer: mo khan <mo@mokhan.ca> 2025-05-23 14:49:19 -0600
commit: 4beee46dc6c7642316e118a4d3aa51e4b407256e (patch)
tree: 039bdf57b99061844aeb0fe55ad0bc1c864166af /app/init.go
parent: 0ba49bfbde242920d8675a193d7af89420456fc0 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/app/init.go b/app/init.go
index 868c2f7..d9ca3de 100644
--- a/app/init.go
+++ b/app/init.go
@@ -20,7 +20,7 @@ import (
 
 func init() {
 	ioc.RegisterSingleton[*zerolog.Logger](ioc.Default, func() *zerolog.Logger {
-		return log.New(os.Stdout, log.Fields{})
+		return log.New(os.Stdout, log.Fields{"app": "sparkled"})
 	})
 	ioc.RegisterSingleton[domain.Repository[*domain.Sparkle]](ioc.Default, func() domain.Repository[*domain.Sparkle] {
 		return db.NewRepository[*domain.Sparkle]()
author	mo khan <mo@mokhan.ca>	2025-05-20 14:28:06 -0600
committer	mo khan <mo@mokhan.ca>	2025-05-23 14:49:19 -0600
commit	4beee46dc6c7642316e118a4d3aa51e4b407256e (patch)
tree	039bdf57b99061844aeb0fe55ad0bc1c864166af /app/init.go
parent	0ba49bfbde242920d8675a193d7af89420456fc0 (diff)