Service-level authorization at the individual level

So far, we've looked at an example of namespace-level abstraction for granting authorizations. Now, let's provide granular access control to define authorizations at the individual service level. Refer to the following diagram for implementing authorizations through service accounts:

As shown in the preceding diagram, the granular access control on each microservice is as follows:

  • Define a service role for the productpage service for the GET permission only. For example, the productpage service is available for GET, but only for the users connecting through the ingress gateway. Grant the ...

Get Mastering Service Mesh now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.