Secure Microservice using Istio w/ JWT

This page summarizes the projects mentioned and recommended in the original post on dev.to
Web programming Java HTTP Server dx-sdk Fengsp/pencil —

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • istio_authn-authz_jwt

    Istio AuthN/Z with JWT Token

    Thanks for reading, and learning with me. If you want to run it yourself here is the source code and instructions.

  • frank_jwt

    JSON Web Token implementation in Rust.

    According to NIST SP 800-207 that no resource is inherently trusted that 1) every asset (service) MUST have its security posture evaluated via a PEP before a request is granted ... 2) and the evaluation should be continual for as long as the session lasts. Istio typically operates at L7. And in order to implement Defense-in-Depth strategy we also need to complement it with L3/4 enforcement through NetworkPolicy. Please check out additional security considerations, and we won't talk about it. Instead, let me walk you through how to protect the workload using Istio with JWT.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  • auth0-java

    Java client library for the Auth0 platform

    You can acquire a free JWT token through auth0. We'll use it for the demo.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts