In the multi-cluster world, the export-service will be accepting calls from the east/west gateway. We need to determine how we need to modify the internal / private authenticator to handle requests from east/west gateway.

Will the internal clients (notifications, inventory, subscriptions) be required to still pass along the PSK along with the OIDC token?