From the course: Microservices: Security

Unlock the full course today

Join today to access over 22,400 courses taught by industry experts or purchase this course individually.

Issuing tokens

Issuing tokens

From the course: Microservices: Security

Start my 1-month free trial

Issuing tokens

- [Instructor] Being issued an access token is the first step for clients that need to securely access a microservice. Tokens are issued to a client after a series of calls are orchestrated between the resource owner, the client application and the authorization server. The first part of this exchange is very important because the resource owner authenticates with the authorization server using their credentials. Then the resource owner consents to the client, accessing their protected resources. This causes the authorization server to create or mint an access token that is provided to the client. If the access token is a reference token, it must be stored at this point in time. Let's highlight a few key points and advantages of this exchange. First, the microservice is not required to store user credentials because authentication is handled centrally by the authorization server. The client never handles the credentials…

Contents