Reputation: 2863
Securing Eureka in Spring cloud
I am curious about what options I have for securing a service connecting (registering and getting disco info) to eureka. Obviously I want to turn security on in Eureka and specify a username password for service.
One question that I have is how do services trying to connect to eureka specify their credentials? Is it through the specification of the zone and what is the format of this reference?
*** I actually the answer to the above question and posted below, But still wonder about the following
As well, can I specify more strenuous security mechanisms and if so, which and how?
Upvotes: 4
Views: 7370
Answers (1)
Reputation: 2863
Ok, turns out that after you post an question is when suddenly you discover a way of doing.
I have figured out the part of my question:
in the Eureka server put this
security:
basic:
enabled: true
user:
name: user # login username
password: password
In you service then put this
eureka:
client:
registerWithEureka: true
fetchRegistry: true
serviceUrl:
defaultZone: http://user:password@localhost:8761/eureka/
After this services are authenticating to Eureka nd Eureka will reject any service without these credentials.
So Now to the second part of my question. What other ways can I secure this connection that are more secure?
Upvotes: 11
Related Questions
- Understanding Spring Cloud Eureka Server self preservation and renew threshold
- How to secure spring cloud eureka service with basic auth?
- Securing each microservices
- Eureka,Zuul,Microservices and Spring Security concern
- Eureka authentication method and UI
- Spring Cloud Eureka with Spring security
- Eureka Server: How to achieve high availability
- Securing Microservices that use Spring Cloud & Netflix's Eureka and Feign
- Spring Cloud Eureka Server + Custom Auto-Configured Web Security
- Spring cloud sample Eureka server