How to secure microservice applications with role-based access control? (4/7)

Foto Source: Nataliya Vaitkevich (www. pexels.com) Option: JWT In the previous blog part (part 3) we have used  BasicAuthentication for transferring credentials which are then enforced in the requested service. This approach has several disadvantages. First and foremost, each service has access to user credentials. Thus, if one service is hacked, all services are impacted. […]

Using OpenTelemetry and Grafana Tempo with Your Own Services/Application

By Robert Baumgartner, Red Hat Austria, March 2023 (OpenShift 4.12, OpenShift distributed tracing data collection 0.63) In this blog, I will guide you on how to use OpenTelemetry with a Quarkus application; how to forward your OpenTelemetry information to Tempo and display it in Grafana UI. I will use distributed tracing to instrument my services […]

How to secure microservice applications with role-based access control? (3/7)

Foto Source: CottonBro Studio (www.pexels.com) Option: BasicAuthentication In the previous post (Part 2), we have set the scene by implementing a basic service-to-service communication with 3 REST end-points (publicEP, userEP, adminEP). The checking of the role has been done programmatically against an HTTP query parameter. We have elaborated on the down-sides of this option and […]

How to secure microservice applications with role-based access control? (1/7)

Foto Source: Life of Pix (www.pixels.com) Role-based Access Control (shortly RBAC) is one of the first things that come to mind if you think about security. But how can you do this consistently, without overburdening developers and IT-operation? And how can this be done in the context of micro-services architectures or – more generally speaking […]

How to secure microservice applications with role-based access control (2/7)?

Foto Source: Ron Lach (www. pixels.com) Option: HTTP Query Param In Part 2 of our 7-part blog series “How to secure microservice applications with role-based access control”, we will build the basic services and establish a connection. Later, we are going to implement a basic Role-based Access Control (RBAC) by transmitting the role information via […]

Kafka and Its Alternatives: A high-level comparison of Proprietary and Open-Source Solutions

Target group: If you are a solution architect or consultant looking for some references of distributed data messaging solutions at a high level, this is an article for you. As well, if you are experiencing significant growth at your company and your messaging system is struggling to handle the volume of traffic, you experience frequent […]

The pleasures of being the Chief-Chief-Editor

Sometimes things happen, and then you need to jump in. You might have deducted from a couple of our posts in the past, mainly around Year-End, that we have a couple of Chief-Editors for this weekly publication. And as there also sometimes someone needs to be the Chief of the Chiefs, we decided, that I […]

Service Mesh for Developers

The Fallacies of Distributed Computing Many years ago we moved away from monolithic applications and started to develop our app as a network of smaller services, the microservice architecture. This brought many advantages and we finally had fun again developing large business applications. But we were also being introduced to the Fallacies of Distributed Computing […]

Full Stack Cloud Native Application: A Feedback Form

Introduction This article is a step by step example, how to develop, build and deploy a cloud native application with its infrastructure components. This cloud native application uses OpenShift as the underlying application platform with following features:  The use case is a feedback form, where users can give their feedback. The repositories for this application […]

Approaching the Kubernetes Bridge – Multi-container Apps with Rootless Podman

In the year 2023 we celebrate the 10th anniversary of Docker and the 9th anniversary of Kubernetes. Container technology has now become mainstream. But recent advances in the Podman ecosystem prove that innovation in the container world is still happening at a strong pace. Podman 4 was released in February 2022 and brought considerable improvements […]

%d bloggers like this:
close

Subscribe to our newsletter.

Please select all the ways you would like to hear from Open Sourcerers:

You can unsubscribe at any time by clicking the link in the footer of our emails. For information about our privacy practices, please visit our website.

We use Mailchimp as our newsletter platform. By clicking below to subscribe, you acknowledge that your information will be transferred to Mailchimp for processing. Learn more about Mailchimp's privacy practices here.