在邮件传递系统中使用基于令牌的授权(OAuth访问令牌) [英] Using token based authorization (OAuth access tokens) with message delivery system

问题描述

在通过消息传递系统(例如Kafka)进行通信的情况下，是否可以/可行使用OToken2参考或JWT之类的访问令牌进行授权实施?

Is it possible/feasible to use access tokens such as OAuth2 reference or JWT for authorization enforcement in case of communication via message delivery system such as Kafka?

围绕OAuth2/OIDC的协议指南强烈建议在客户端和服务器之间使用TLS，以防止令牌泄漏.在具有消息传递系统的方案中，只能使用消息加密来实现.在这种情况下，密钥 分发成为一个问题，尤其是如果客户端位于客户网络中并且服务位于云中.

Protocol guidelines around OAuth2/OIDC strongly suggest using TLS between client and a server in order to prevent token leaks. In a scenario with message delivery system, it can only be achieved with message encryption. In such case key distribution becomes a problem, especially if client is located in customer network, and services are in the cloud.

任何提示将不胜感激.

关于德米特里的问候

推荐答案

您是否要问WCF(客户端)是否可以使用openAuth来使用消息?简短的答案是可以的， https://blogs.msdn.microsoft.com/astoriateam/2011/01/20/odata-and-oauth-protecting-an-odata-service-using-oauth-2-0/.

Are you asking if WCF (client) can use openAuth to consume messages?  The short answer is yes you can , https://blogs.msdn.microsoft.com/astoriateam/2011/01/20/odata-and-oauth-protecting-an-odata-service-using-oauth-2-0/ .

这篇关于在邮件传递系统中使用基于令牌的授权(OAuth访问令牌)的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！