I am gonna use something like caddy as revers proxy to expose the service.
Caddy offers the functionality to secure resources with basic auth
and promt the browser on usage. I am gona go with it. It's the simplest
solution.
I still need to remove the basic auth code from the backend and craft
a configuration for caddy.
