This project consists of three services: api-gateway, auth-server, and secure-server. api-gateway is an Nginx server configured with the auth request module, acting as the entry point for all requests. auth-server is the authentication server which api-gateway calls using subrequests. secure-server is an HTTP server accessible to authorized users only.
To run the application locally, follow these steps:
-
From the root directory, run the command
docker compose buildto build the required images. -
From the root directory, run the command
docker compose -p auth up -dto start the required services. -
In a separate terminal, create an account/user by running the following command:
curl --location --request POST 'localhost:3000/auth/register' \ --header 'Content-Type: application/json' \ --data-raw '{ "username": "newuser", "password": "mypassword"}' \ --include \ --cookie-jar cookies.txt \ --write-out '\nResponse status code: %{response_code}\n'This command will return a session cookie and store it in a file called
cookies.txt. -
Use the cookie obtained in the previous step to access the secure server by running the following command:
curl --location --request GET 'localhost:3000/api/echo' \ --cookie cookies.txt \ --include \ --write-out '\nResponse status code: %{response_code}\n'This command will use the
X-Session-IDcookie from thecookies.txtfile to access the secure server and return the response status code.
That's it! You have successfully authenticated and accessed a secure server using a distributed network of services.