Session management using json web tokens in microservices -

-

i trying figure out how manage sessions using json web tokens in microservice architecture.

looking @ design in article have in mind client send request first goes through firewall. request contain opaque/reference token firewall sends authorization server. authorization server responds value token containing session information user. firewall passes request along value token api, , value token propagated different microservices required fulfill request.

i have 2 questions:

  1. how should updates session information in value token handled? elaborate, when session info in token gets updated, needs updated in authorization server. should each service changes token talk authorization server?
  2. should microservices use single token store session info? or better each service have personalized token? if it's latter, please explain how adjust design.

a very(!) significant "fly in ointment" of kind of design ... requires careful advance thought on part ... is: “precisely what meant ‘session’ information.” in architecture, “everyone racing else.” if session information updated, not , cannot(!) know of agents knows change , not. further complicate things, new requests arriving asynchronously , overlap other requests in unpredictable ways.

therefore, authorization server must ... and, no more. validates (authenticates ...) opaque token, , supplies trustworthy description of request authorized do. but, information harbors cannot change. , specifically, cannot hold “session state” data in web server sense of term.

each microservice provider must maintain own “tote board” *(my term ... “its own particular subset of in web-server ‘the session pool’”), , desirable not feasible board independent of others. certainly, must use central database (with transactions) coordinate other service-providers situated. , still, if truth content of of these “totes” causally related other, have out-of-sync issue between them.

although microservice architecture has academic appeal, imho designs must carefully studied are, in fact, compatible approach.


Comments

Post a Comment

Popular posts from this blog

Failed to execute goal org.apache.maven.plugins:maven-surefire-plugin:2.12:test (default-test) on project.Error occurred in starting fork -

-
i searched on internet provided answers did not in building project. the error starting fork. tried following methods: mvn clean install -u when searched, people said because of java 7 , should work java 6. using java 6 only. some said set surefire plugin this: <groupid>org.apache.maven.plugins</groupid> <artifactid>maven-surefire-plugin</artifactid> <version>2.5</version> <configuration> <skiptests>false</skiptests> <testfailureignore>true</testfailureignore> <forkmode>once</forkmode> </configuration> the actual error is: [error] failed execute goal org.apache.maven.plugins:maven-surefire-plugin:2.12:test (default-test) on project junitcategorizer.instrument: error occurred in starting fork, check output in log -> [help 1] org.apache.maven.lifecycle.lifecycleexecutionexception: failed execute goal org.apache.maven.plugins:maven-surefire-plugin:2...
Read more

windows - Debug iNetMgr.exe unhandle exception System.Management.Automation.CmdletInvocationException -

-
i fired windows 7 machine today , attempting start intemgr.exe process terminates immediately. started process under debugger. seems process terminating following exception: system.management.automation.cmdletinvocationexception . dumping exceptions on heap yields following results. heap has few more exception listed below. so based on research exception happens when cmdlet encounters terminating error. method call before processrecord(). provides record-by-record processing functionality cmdlet. windows powershell runtime calls method multiple times each instance of cmdlet in pipeline. how can inspect pipeline debugger? exception object: 0000000002702940 exception type: system.management.automation.itemnotfoundexception message: cannot find path 'c:\windows\system32\windowspowershell\v1.0\modules\applicationserver\applicationserver.dll' because not exist. innerexception: <none> stacktrace (generated): sp ip function 000000001...
Read more

configurationsection - activeMq-5.13.3 setup configurations for wildfly 10.0.0 -

-
hi new work on activemq, trying access messages send activemq in mdb onmsg() method unable things done here sample standalone-full.xml configuration. <subsystem xmlns="urn:jboss:domain:messaging-activemq:1.0"> <jms-queue name="favouritesqueue" entries="queue/favouritesqueue"/> </server> </subsystem> mdb configuration <mdb> <resource-adapter-ref resource-adapter-name="activemq-ra.rar"/> <bean-instance-pool-ref pool-name="mdb-strict-max-pool"/> </mdb> <subsystem xmlns="urn:jboss:domain:resource-adapters:4.0"> <resource-adapters> <resource-adapter id="activemq-ra.rar"> <archive> activemq-rar-5.13.3.rar </archive> <transaction-support>xatr...
Read more