A new interface for each service, sure, but if your services only need to be deployed internally, some sort of authentication layer could be overkill.