DEV Community

Eric See
Eric See

Posted on

2 1

Creating Single Sign on User & Access Management Service

Before we proceed to creating the popular composable microservices. We would want to create a Single Sign On Users & Access Management Service. This service will manage users, organizations and serves as Single Sign On Module. This is an mandatory service to get it up and running before we proceed to develop other microservices.

Here is what this service in a nutshell is about:

  • SSO serves as single sign on for other service applications (SSO Clients).
  • SSO authenticate users on behalf of the SSO Clients.
  • It follows the oAUTH framework.

Image description

  • It will manage organizations and it users.
  • SSO Clients can sync organizations and its authorized users from it.
  • Implement 2FA Authentication. (Google Authenticator)
  • It will handle features like:
  • Forget & Resetting Password
  • Mandatory changing of credentials after a preset period.

Well all this are theory let's see how I actually implemented it:

Image description

I have implemented this service using NODEJS with Express, REDIS, MongoDB & Google Authenticator as cornerstone back-end stack. Front-end I use a Core UI bootstrap admin template as base.

The Token is store in the REDIS cache with expiry time of 2 mins.

We will discuss how to implement SSO client in my subsequent posts.

Heroku

This site is built on Heroku

Join the ranks of developers at Salesforce, Airbase, DEV, and more who deploy their mission critical applications on Heroku. Sign up today and launch your first app!

Get Started

Top comments (0)

Heroku

This site is powered by Heroku

Heroku was created by developers, for developers. Get started today and find out why Heroku has been the platform of choice for brands like DEV for over a decade.

Sign Up