0

can anyone please help me understand how does consul authenticate micro-services in a micro-services architecture and can we replace the micro-service authentication (which is using oauth2) with consul ?

Gopi
  • 620
  • 8
  • 16
kmar akrout
  • 355
  • 1
  • 6
  • 16
  • What do you mean by consul authenticate? are you talking about https://spring.io/projects/spring-cloud-consul or – vaquar khan Feb 27 '19 at 17:03
  • when i watched the video that the company did to present consul he said that consul can manage how is one microservice is allowed or not to contact another and how can microservice A be sure that it is B who is trying to call him not some other malicious microservice .. i wanted to know if anyone has tried to use consul in that way coz i dont seem to find any documentation on the net but that single video – kmar akrout Feb 28 '19 at 09:41

1 Answers1

0

Looks like you are looking for the Service segmentation use case of consul

arunvg
  • 1,209
  • 1
  • 20
  • 31
  • yes ! i've been diving into the documentation and kind od understood the hows and whys .. just one more how .. how can i integrate that segmentation service with my spring boot based micro-services architecture – kmar akrout Mar 01 '19 at 13:18
  • For consul we had gone for a docker based integration. – arunvg Mar 01 '19 at 13:34
  • https://learn.hashicorp.com/consul/getting-started/connect this should be a good start – arunvg Mar 01 '19 at 13:35
  • yeah i've seen that , but still the vision is not so clear that's why i posted the question . i want to see how can we replace the athentication micro-service with consul connect. – kmar akrout Mar 01 '19 at 15:08
  • I guess you are talking about the user authentication and authorization. There are two separate concerns 1. Authentication and authorization of service end points exposed to the end user. 2. Another one is authentication and authorization of inter service call. – arunvg Mar 04 '19 at 04:27
  • 1
    Connect is a solution for the second one i.e inter service calls. You need to check whether this relevant for you. – arunvg Mar 04 '19 at 04:30
  • For the first one, which is the common application concern. You may use your own mechanisms usually OAuth, Ldap. – arunvg Mar 04 '19 at 04:31