Individual Workspace Access
My use of the coder platform is a bit unorthodox. Because my users will be external to my organization, I plan on having a single admin user registered on coder. A separate service will communicate with coder using an API key for said admin user to create customer workspaces. A custom proxy will be in charge of checking customer creds and verify that the attempted workspace connection is meant for that user. If it passes, it will forward the traffic to the appropriate workspace. My issue is with the actual communication with the workspace. From my understanding, an auth cookie is required to access the workspace but due to my use of the platform, that cookie needs to be the WS owner which is my admin user. In order to prevent leaking said cookie, is there a way to hand out a temporary workspace token for my customers to access their workspaces?
2 Replies