Reputation: 591
Implement security only at ZUUL Gateway
I have the below microservice architecture(spring boot ,java). I want to implement OAUTH2 JWT security at ZUUL gateway only and not replicate the security code in microservices . let say Microservice 1 has rest end point http://localhost:8080/microservice-1/get/person then i should not have any security code in Microservice 1 but still at the same time no one should be able to access the Microservice 1 rest end point directly without passing JWT tokens but it should only be accessible via ZUUL.
Upvotes: 0
Views: 1002
Answers (1)
Reputation: 61
You can use WebSecurityConfigurerAdapter class in your Zuul gateway and configure the security for each route.
This is an excellent example for you
https://medium.com/@bharatrajmeriyala/spring-cloud-security-with-netflix-zuul-2ef04a1dcfb
Upvotes: 0
Related Questions
- Spring Boot 2.4.2 Gateway API with Zuul
- Using Zuul as an authentication gateway
- Zuul route to secured microservice results to 401 response
- Spring Zuul Oauth2 Gateway/Resource Server
- Zuul spring security and adding Additional Params in Request
- zuul API Gateway Filter
- Security in Zuul Gateway
- Authentication to access Spring boot Zuul Service routes
- Spring Security Cloud: UI service through a ZUUL gateway security setup
- Spring Cloud Zuul gateway 401 basic authentication