4 Accessing a secured microservice via a single-page application

This chapter covers

Building a SPA using Angular and Spring Boot to talk to a secured microservice
Overcoming CORS-related issues
Logging into a SPA with OpenID Connect

In chapter 2, we discussed how to secure a microservice with OAuth 2.0 and directly invoked it with a curl client. Chapter 3 made further improvements by deploying the microservice behind an API gateway. The API gateway took over the OAuth 2.0 token validation responsibility from the microservice, and the communication between the API gateway and the microservice was secured with mTLS. The API gateway introduced a layer of abstraction between the client applications and microservices. All the communications with ...

Get Microservices Security in Action now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Microservices Security in Action by Prabath Siriwardena, Wajjakkara Kankanamge Anthony Nuwan Dias

4 Accessing a secured microservice via a single-page application

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly