在邮件传递系统中使用基于令牌的授权(OAuth访问令牌) [英] Using token based authorization (OAuth access tokens) with message delivery system
问题描述
在通过消息传递系统(例如Kafka)进行通信的情况下,是否可以/可行使用OToken2参考或JWT之类的访问令牌进行授权实施?
Is it possible/feasible to use access tokens such as OAuth2 reference or JWT for authorization enforcement in case of communication via message delivery system such as Kafka?
围绕OAuth2/OIDC的协议指南强烈建议在客户端和服务器之间使用TLS,以防止令牌泄漏.在具有消息传递系统的方案中,只能使用消息加密来实现.在这种情况下,密钥 分发成为一个问题,尤其是如果客户端位于客户网络中并且服务位于云中.
Protocol guidelines around OAuth2/OIDC strongly suggest using TLS between client and a server in order to prevent token leaks. In a scenario with message delivery system, it can only be achieved with message encryption. In such case key distribution becomes a problem, especially if client is located in customer network, and services are in the cloud.
任何提示将不胜感激.
关于德米特里的问候
推荐答案
您是否要问WCF(客户端)是否可以使用openAuth来使用消息?简短的答案是可以的, https://blogs.msdn.microsoft.com/astoriateam/2011/01/20/odata-and-oauth-protecting-an-odata-service-using-oauth-2-0/.
Are you asking if WCF (client) can use openAuth to consume messages? The short answer is yes you can , https://blogs.msdn.microsoft.com/astoriateam/2011/01/20/odata-and-oauth-protecting-an-odata-service-using-oauth-2-0/ .
这篇关于在邮件传递系统中使用基于令牌的授权(OAuth访问令牌)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!