wondering - what is the recommended way to add some auth to the cerbos endpoint - token? user/pass? depending on how I deploy Cerbos I know I can use networking rules, L7 stuff (ex: istio) to give me auth, but is there a deployment-agnostic approach - ideally some sort of a cerbos config?