An application in production usually cannot do without authorization checks. According to the OWASP “Defense in Depth” principle, the AuthZ checks should not only be carried out in the application code. An additional layer of authorization checks, preferably in the cloud infrastructure, is considered best practice. Application-specific declarative authz checks can be performed in the sidecar using a service mesh tool. The possibilities that Istio offers here will be looked at in more detail in this session. TLS/mTLS and authentication, as necessary prerequisites for AuthZ, are also presented in detail.
Ihnen gefällt vielleicht auch
devm.io Blog (31.10.2022)
Artikel im JavaMagazin 10.2022
Artikel im JavaMagazin 3.2022
Posting beim W-JAX Blog 08/2021