Azure 流量管理器和 OAuth 2.0 [英] Azure Traffic Manager and OAuth 2.0
问题描述
我们使用 Azure Active Directory 来注册客户端应用程序.客户端应用程序使用 AAD 客户端 ID 和机密来获取访问令牌,以对我们在 Azure 中部署的后端微服务进行身份验证.
We are using Azure Active Directory for registering client applications. The client applications use the AAD clientId and secret to get an access token to authenticate to the back end microservices we have in place in Azure.
我们将这些微服务置于 Azure 流量管理器后面.我的问题是,如果发生以下情况,OAuth 2.0 令牌会发生什么:
We have these microservices sitting behind an Azure Traffic Manager. My question is, what will happen to the OAuth 2.0 token if the following scenario occurs:
- 用户已通过身份验证并使用后端微服务 1(实例 1)
- 用户被流量管理器切换到后端微服务 1(实例 2)
他们需要重新登录吗?
推荐答案
Azure 流量管理器在 DNS 级别运行,这意味着一旦服务将终结点返回给 DNS 解析器(响应由那个解析器),它不再处于循环中,任何通信都在客户端和服务器之间进行.由于 Azure 流量管理器不知道客户端和服务器之间发生的情况,因此任何特定于应用程序的令牌切换和切换都不会由流量管理器控制
Azure Traffic Manager operates at the DNS level which means that once the service gives an endpoint back to the DNS resolver (in response to a DNS query that was sent by that resolver), it is no longer in the loop and any communication is between the client and the server. Since Azure Traffic Manager is agnostic to what happens between the client and the servers, any application specific token handoffs and switch backs will not be controlled by Traffic Manager
这篇关于Azure 流量管理器和 OAuth 2.0的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
