Skip to content

microservices-security-in-action/samples

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

591 Commits
appendix-b
appendix-b
 
 
appendix-e
appendix-e
 
 
appendix-f
appendix-f
 
 
appendix-g
appendix-g
 
 
appendix-i
appendix-i
 
 
appendix-j
appendix-j
 
 
appendix-k
appendix-k
 
 
chapter02
chapter02
 
 
chapter03
chapter03
 
 
chapter04
chapter04
 
 
chapter05
chapter05
 
 
chapter06
chapter06
 
 
chapter07
chapter07
 
 
chapter08
chapter08
 
 
chapter09
chapter09
 
 
chapter10
chapter10
 
 
chapter11
chapter11
 
 
chapter12
chapter12
 
 
chapter13
chapter13
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
cover.jpeg
cover.jpeg
 
 
notes.md
notes.md
 
 
supplementary-readings.md
supplementary-readings.md
 
 

Repository files navigation

Microservices Security In Action

By Prabath Siriwardena and Nuwan Dias

Amazon | Manning | YouTube | Slack | Notes | Supplementary Readings

NOTE: While writing the book we wanted to mostly focus on the concepts, as the concrete technologies used to implement the concepts are constantly changing and we wanted to keep them as much as simple. So we decided to use Spring Boot to implement the OAuth 2.0 authorization server used in the samples of the book. However in practice you may use Keycloak, Auth0, Okta, WSO2, and so on as your authorization server.

Spring Boot has deprecated AuthorizationServerConfigurerAdapter, ClientDetailsServiceConfigurer, and AuthorizationServerSecurityConfigurer classes, which we used to implement the authorization server, which we will surely update in the next edition of the book and will also update the github project even before that. However, we expect this will not distract the readers that much, because we don't expect them to implement an authorization server.

PART 1 OVERVIEW

1 ■ Microservices security landscape

2 ■ First steps in securing microservices

PART 2 EDGE SECURITY

3 ■ Securing north/south traffic with an API gateway

4 ■ Accessing a secured microservice via a single-page application

5 ■ Engaging throttling, monitoring, and access control

PART 3 SERVICE-TO-SERVICE COMMUNICATIONS

6 ■ Securing east/west traffic with certificates

7 ■ Securing east/west traffic with JWT

8 ■ Securing east/west traffic over gRPC

9 ■ Securing reactive microservices

PART 4 SECURE DEPLOYMENT

10 ■ Conquering container security with Docker

11 ■ Securing microservices on Kubernetes

12 ■ Securing microservices with Istio service mesh

PART 5 SECURE DEVELOPMENT

13 ■ Secure coding practices and automation

APPENDICES

A ■ OAuth 2.0 and OpenID Connect

B ■ JSON Web Token

C ■ Single-page application architecture

D ■ Observability in a microservices deployment

E ■ Docker fundamentals

F ■ Open Policy Agent

G ■ Creating a certificate authority and related keys with OpenSSL

H ■ Secure Production Identity Framework for Everyone

I ■ gRPC fundamentals

J ■ Kubernetes fundamentals

K ■ Service mesh and Istio fundamentals

About

Microservices Security in Action Book Samples

Resources

Readme
Activity
Custom properties

Stars

220 stars

Watchers

22 watching

Forks

160 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages