I was experimenting with RPC as alternative to some services actually implemented using http REST APIs. Since this services are actually not public and are used only by other services using RPC could make more sense.
I'm looking for some hint regarding RPC authorization best practices since I'm really not sure about the way to follow.
I'm using golang for this
how do I make sure an RPC get used only by authorized services
can I authorize only a subset of the exposed procedures