Before we proceed to creating the popular composable microservices. We would want to create a Single Sign On Users & Access Management Service. This service will manage users, organizations and serves as Single Sign On Module. This is an mandatory service to get it up and running before we proceed to develop other microservices.
Here is what this service in a nutshell is about:
- SSO serves as single sign on for other service applications (SSO Clients).
- SSO authenticate users on behalf of the SSO Clients.
- It follows the oAUTH framework.
- It will manage organizations and it users.
- SSO Clients can sync organizations and its authorized users from it.
- Implement 2FA Authentication. (Google Authenticator)
- It will handle features like:
- Forget & Resetting Password
- Mandatory changing of credentials after a preset period.
Well all this are theory let's see how I actually implemented it:
I have implemented this service using NODEJS with Express, REDIS, MongoDB & Google Authenticator as cornerstone back-end stack. Front-end I use a Core UI bootstrap admin template as base.
The Token is store in the REDIS cache with expiry time of 2 mins.
We will discuss how to implement SSO client in my subsequent posts.
Top comments (0)