Milan Latinović edited this page Sep 19, 2017 · 2 revisions

Microservice that handles authentication and authorization for users. The service should provide the following functionality, provided as API endpoints:

Authentication:

  • Authenticate a user (with a password), create a session and return a session token (should be a JWT token)
  • Validate a session token
  • Close a session

Authorization:

  • Retrieve permissions for a user + session combination
  • Grant and revoke permissions for users
  • Authorize endpoint that responds to "can user X execute action Y"
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.