We are converting a Phoenix 1.4 app into an umbrella app with three web apps. Each web app runs on its own endpoint. In production, the apps will be accessible via subdomains. So
y_web will be accessed through
y.tld.com respectively. We’re hosting the app on Heroku.
We’re not sure where to put Guardian and authentication. For now, we left guardian inside each web app in the umbrella to handle sign in and sign out. But that’s an awful lot of duplication.
Before we go on rewriting a bunch of stuff, if we extract guardian into its own app, say
auth_web, can we not depend on a session cookie on the domain level to make authentication available on
y_web, and so on? I think when we tried this, we ran into some issues with the Guardian token only working in the app where sign-in took place.
+ apps core x_web y_web z_web