Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Hands-On Cloud-Native Applications with Java and Quarkus Build high performance, Kubernetes-native Java serverless applications

Product type Paperback

Published in Dec 2019

Publisher Packt

ISBN-13 9781838821470

Length 314 pages

Edition 1st Edition

Languages

Java

Tools

Kubernetes

Concepts

Cloud Native

Author (1):

Francesco Marchioni

View More author details

Table of Contents (15) Chapters

Preface

1. Section 1: Getting Started with Quarkus FREE CHAPTER

2. Introduction to Quarkus Core Concepts

3. Developing Your First Application with Quarkus

4. Creating a Container Image of Your Application

5. Section 2: Building Applications with Quarkus

6. Adding Web Interfaces to Quarkus Services

7. Managing Data Persistence with Quarkus

8. Building Applications Using the MicroProfile API

9. Securing Applications

10. Section 3: Advanced Development Tactics

11. Advanced Application Development

12. Unifying Imperative and Reactive with Vert.x

13. Reactive Messaging with Quarkus

14. Other Books You May Enjoy

Leave a review - let other readers know what you think

Securing Quarkus services with MicroProfile JWT

In the previous example, we covered how to use Keycloak to authenticate and authorize requests using a bearer token. A bearer token alone, however, is a simplified security schema since it's based on exchanging a potentially arbitrary string.

Any client in possession of a valid bearer token can use it to get access to the associated resources without demonstrating his/her identity, which can only be verified with a cryptographic key. In order to fill this gap, we will learn how to use JSON Web Tokens (JWTs), an encoding standard for tokens, using a JSON data payload that can be signed and encrypted. A JWT includes the following sections:

Header: This is a Base64-encoded string and consists of two parts: the type of the token, which is JWT, and the hashing algorithm being used, such as HMAC SHA256 or RSA. Here is a sample decoded...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Marchioni

Francesco Marchioni is a Red Hat Certified JBoss Administrator (RHCJA) and Sun Certified Enterprise Architect (SCEA) working at Red Hat in Rome, Italy. He started learning Java in 1997, and since then he has followed all the newest application program interfaces released by Sun. In 2000, he joined the JBoss community, when the application server was running the 2.X release. He has spent years as a software consultant, where he has enabled many successful software migrations from vendor platforms to open source products, such as JBoss AS, fulfilling the tight budget requirements necessitated by the current economy. Over the last 10 years, he has authored many technical articles for O'Reilly Media and has run an IT portal focused on JBoss products.

See other products by Marchioni