| | SLO | ENG | Cookies and privacy

Bigger font | Smaller font

Show document

Title:Varovanje programskih vmesnikov spletnih storitev v sodobnih porazdeljenih sistemih s protokolom openid connect
Authors:Horvatič, Luka (Author)
Hölbl, Marko (Mentor) More about this mentor... New window
Hrgarek, Luka (Co-mentor)
Files:.pdf UN_Horvatic_Luka_2019.pdf (908,53 KB)
 
Language:Slovenian
Work type:Bachelor thesis/paper (mb11)
Typology:2.11 - Undergraduate Thesis
Organization:FERI - Faculty of Electrical Engineering and Computer Science
Abstract:V diplomskem delu smo opisali, kako zavarovati dostopne točke spletnih aplikacij v porazdeljenih sistemih. Zavarovali smo jih s slojem avtorizacije, ki ob vsakem poskusu klica dostopnih točk preveri dovoljenja klicatelja. To smo dosegli s protokolom OpenID Connect, ki ga implementira odprtokodna rešitev Keycloak. Za prikaz delovanja varovanja v različnih scenarijih smo pripravili spletno aplikacijo, zgrajeno v aplikacijskem ogrodju Spring Boot in napisano v jeziku Java. Po analizi uporabe dostopnih točk preko varnostnega sloja smo ugotovili, da je protocol OpenID Connect enostavna in primerna rešitev za avtoriziranje zunanjih uporabnikov. Za dodaten nivo varnosti OpenID Connect ponuja rešitev za avtentikacijo uporabnikov, kar pa ni bil cilj naloge.
Keywords:mikroservisna arhitektura, varovanje programskih vmesnikov, OAuth 2.0, OpenID Connect, servis Keycloak
Year of publishing:2019
Source:Maribor
NUK URN:URN:SI:UM:DK:AJO5SBI3
License:CC BY-NC-ND 4.0
This work is available under this license: Creative Commons Attribution Non-Commercial No Derivatives 4.0 International
Views:23
Downloads:5
Metadata:XML RDF-CHPDL DC-XML DC-RDF
Categories:KTFMB - FERI
:
  
Average score:(0 votes)
Your score:Voting is allowed only for logged in users.
Share:AddThis
AddThis uses cookies that require your consent. Edit consent...

Hover the mouse pointer over a document title to show the abstract or click on the title to get all document metadata.

Secondary language

Language:English
Title:Securing web service application programming interfaces in modern distributed systems with the openid connect protocol
Abstract:In this thesis we have described how to protect the access points in our web application. We secured them by adding an authorization layer, which checks for user privileges on every call made on the access points. This was achieved by using protocol OpenID Connect, which is implemented by the opensource service Keycloak. For demonstration purposes, we prepared a web application built in Spring Boot framework and written in the Java programming language. After evaluating the usage of protected end-points, we have deducted that protocol OpenID Connect is a simple and appropriate solution for authorization purposes. For an extra layer of security, OpenID Connect offers additional functionality with the possibility of authenticating users, but that was not the purpose of this project.
Keywords:microservice architecture, securing APIs, OAuth 2.0, OpenID Connect, Keycloak service


Comments

Leave comment

You have to log in to leave a comment.

Comments (0)
0 - 0 / 0
 
There are no comments!

Back
Logos of partners University of Maribor University of Ljubljana University of Primorska University of Nova Gorica