I think a lot of people solve the authentication/authorization problem utilizing an API gateway or auth micro service for one source of truth and SSO for multiple services. This is especially easier with JWT as you can validate the web token with a shared secret. Thought then rotation becomes a pain and needs an orchestrated mechanism. API Gateways are also good in terms of metrics on your HTTP gold metrics: request durations, error rates and request rate.
We're a place where coders share, stay up-to-date and grow their careers.
We strive for transparency and don't collect excess data.