September 2018
Intermediate to advanced
412 pages
11h 12m
English
book
Industrial Internet Application Development
by Alena Traukina, Jayant Thomas, Prashant Tyagi, Veera Kishore Reddipalli
Content preview from Industrial Internet Application Development
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
The advantages of using established trust between microservices
Since microservices at the IoT scale can generate a huge amount of load, it is essential we use best practices to handle security. As we have seen in the chapter on security, we typically use OAuth to handle authentication and authorization between the services, and in typical use cases the user gets authenticated using a UAA, which generates a JWT token for subsequent calls to the services. But this JWT token needs to be validated by each of the microservices. This can generate lots of traffic to the UAA service. Alternatively, we can use a Client Credential Grant, as will be detailed in this section, to establish trust between the microservices.
The Client Credentials Grant ...