Steven Pousty

You've Got Microservices... Let's Secure Them

You went ahead a built a whole new set of shiny microservices. While doing this, you realized you can no longer rely on your application server to handle all the authentication. Oh, and of course, one of your teams used Node.js. How are you going to secure all these endpoints so that the end user doesn’t have to authenticate against each one. In this session, we'll give a demonstration of using a centralized authentication service to secure many different microservices. The demo will be based on Project Keycloak, but it would apply as well to Stormpath, Ping.Indenty, or similar services.