Coder Social home page Coder Social logo

sobprom / samples Goto Github PK

View Code? Open in Web Editor NEW

This project forked from microservices-security-in-action/samples

0.0 1.0 0.0 134.09 MB

Microservices Security in Action Book Samples

Dockerfile 0.60% Java 81.45% Open Policy Agent 1.54% Shell 7.07% JavaScript 1.64% TypeScript 7.25% HTML 0.37% CSS 0.07%

samples's Introduction

Microservices Security In Action

By Prabath Siriwardena and Nuwan Dias

Amazon | Manning | YouTube | Slack | Notes | Supplementary Readings

NOTE: While writing the book we wanted to mostly focus on the concepts, as the concrete technologies used to implement the concepts are constantly changing and we wanted to keep them as much as simple. So we decided to use Spring Boot to implement the OAuth 2.0 authorization server used in the samples of the book. However in practice you may use Keycloak, Auth0, Okta, WSO2, and so on as your authorization server.

Spring Boot has deprecated AuthorizationServerConfigurerAdapter, ClientDetailsServiceConfigurer, and AuthorizationServerSecurityConfigurer classes, which we used to implement the authorization server, which we will surely update in the next edition of the book and will also update the github project even before that. However, we expect this will not distract the readers that much, because we don't expect them to implement an authorization server.

PART 1 OVERVIEW

1 ■ Microservices security landscape

2 ■ First steps in securing microservices

PART 2 EDGE SECURITY

3 ■ Securing north/south traffic with an API gateway

4 ■ Accessing a secured microservice via a single-page application

5 ■ Engaging throttling, monitoring, and access control

PART 3 SERVICE-TO-SERVICE COMMUNICATIONS

6 ■ Securing east/west traffic with certificates

7 ■ Securing east/west traffic with JWT

8 ■ Securing east/west traffic over gRPC

9 ■ Securing reactive microservices

PART 4 SECURE DEPLOYMENT

10 ■ Conquering container security with Docker

11 ■ Securing microservices on Kubernetes

12 ■ Securing microservices with Istio service mesh

PART 5 SECURE DEVELOPMENT

13 ■ Secure coding practices and automation

APPENDICES

A ■ OAuth 2.0 and OpenID Connect

B ■ JSON Web Token

C ■ Single-page application architecture

D ■ Observability in a microservices deployment

E ■ Docker fundamentals

F ■ Open Policy Agent

G ■ Creating a certificate authority and related keys with OpenSSL

H ■ Secure Production Identity Framework for Everyone

I ■ gRPC fundamentals

J ■ Kubernetes fundamentals

K ■ Service mesh and Istio fundamentals

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.