How would we pass auth when using API or more importantly pg wire protocol layer if there is underlying security attaches to the source data. Any suggestions on how we can leverage auth later?