From 7d11a972f3e68b4d895259aa010d293c2f6f9b2a Mon Sep 17 00:00:00 2001
From: Nikolai Rodionov <iam@allanger.xyz>
Date: Fri, 15 May 2026 10:36:51 +0200
Subject: [PATCH] Move the token auth to a public service

Signed-off-by: Nikolai Rodionov <iam@allanger.xyz>
---
 proto/tokens/v1/tokens_v1.proto | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/proto/tokens/v1/tokens_v1.proto b/proto/tokens/v1/tokens_v1.proto
index 50d2f97..d1dfe0d 100644
--- a/proto/tokens/v1/tokens_v1.proto
+++ b/proto/tokens/v1/tokens_v1.proto
@@ -22,7 +22,12 @@ service TokensService {
   rpc ListTokens (google.protobuf.Empty) returns (stream ListTokensResponse) {}
   // List all available permissions
   rpc ListPermissions (google.protobuf.Empty) returns (stream ListPermissionsResponse) {}
+}
+
+// An endpoint to authenticate with a token should be here
+service PublicTokensService {
   // Recieve a JWT access token
+  // DO NOT implement it in the web app!
   rpc AuthenticateWithToken(AuthenticateWithTokenRequest) returns (google.protobuf.Empty) {}
 }