Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 2 years ago.
Improve this question
I'm working on a Spring Boot Application which has both REST API and JWT Authentication. But It's over-weighted and I'm planning to detach the Security module to another micro-service.
What are some of the advantages and disadvantages of having this level of separation?
Are there any security concerns that may introduce vulnerabilities in the separated REST API?
You can do authentication on a different service or even use a thirdparty tool or provider e.g. Auth0 or Keycloak.
Only the authorization should be in the "business" service.
Related
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 2 years ago.
Improve this question
We are about to start a new microservice based application and we are going to use Spring boot for this. Feign client is really convenient tool to use. But I recently came to know that Rest-Template is going to be deprecated and will be replaced by WebClient, and Feign Client internally uses Rest-Template. My question is what should be our action in this case.
As far as I know, Spring Cloud OpenFeign does not use RestTemplate under the hood.
For example, you can also configure the use of OkHttpClient or ApacheHttpClient instead of the default one in order to support HTTP/2.
In response to your question, you can use the Spring Cloud OpenFeign independently of RestTemplate and WebClient.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 2 years ago.
Improve this question
I am trying to implement Authentication for Rest API's using Spring boot but i'm getting confusion between word authentication and authenticate. Someone please help me how to implement Authentication and authenticate in spring boot?
Spring Security Architecture guide:
Application security boils down to two more or less independent problems: authentication (who are you?) and authorization (what are you allowed to do?).
As a suggestion, you can review these sample articles:
Spring Security with JWT
Introduction to Spring Method Security
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
I'm creating a microservice architecture demo application.
I got a doubt that, do we need both Zuul and API-Gateway?
What is not possible in Zuul and API-Gateway so that we need both?
Please suggest.
Zuul brings along the capabilities of a gateway (or API-gateway). As stated in the documentation:
Zuul is a JVM-based router and server-side load balancer from Netflix
It is well integrated in the sping-boot cloud project and can be used as router and load balancer. This are the core features of a gateway. Thus I would not double this function and stick to Zuul here.
Also I want to point out, that there are a lot of similar API-gateway solutions that can be used in the context of a spring-boot application. Here you can find an article explaining and comparing them. The three products mentioned there are:
NGINX
Zuul
Spring Cloud Gateway
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 4 years ago.
Improve this question
I am trying to develop a microservices using spring mvc and spring boot with using spring cloud tools and services. And i am planning to deploy my spring cloud microservices in elastic beanstalk. So I have a doubt in deployment process.
Whether I need to use any container service for deployment into elastic beanstalk? When I exploring i found that writings about containers in cloud foundry. So i felt confusion that need I deploy any container services into elastic beanstalk or need to include container service dependency file when developing service??
You can use AWS Elastic Beanstalk(EB) or EC2 Container Service(ECS).
If you want to control your scaling and capacity use ECS, ECS will give you control, as you have to specify the size and number of nodes in the cluster and whether or not auto-scaling should be used.
If you want to focus on the app and not much on DevOps use Elastic Beanstalk. For Elastic Beanstalk just provide a Dockerfile and EB takes care of scaling your provisioning of number and size of nodes, you basically can forget about the infrastructure with the EB route.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 5 years ago.
Improve this question
what is best way to orchestrate micro services in spring boot.
You have many options but I will list 3 of them that I would choose from:
Directly call the other microservice using REST calls (hard code the URL in a property file or create a service for inter service communication).
Setup microservice architecture with spring-cloud and netflix OSS
Setup microservice architecture with spring-cloud and kubernetes