jwt - Django API fronted by Azure API gateway -

-

i have django application stores user credentials , performs authorization , authentication. in process of breaking off front-end angular spa , converting backend rest api. django api live azure api app protected azure api gateway. remove authentication piece django , allow users sign in using openid connect through either google or microsoft account. happen this:

when user visits site, assuming have never registered app, have option sign in google account or microsoft account. if user decides sign in using google or microsoft account, (this i'm confused , why i'm posting here ... ) think happens api gateway performs authentication, generates json web token (jwt), , sends token django api. django receives jwt, decrypts it, , checks see if there user account matching email address in jwt. if there not user account, django add user user accounts table (not storing password). if there user matching email address, django allows user in.

all said, guess question(s) are:

  1. should authentication @ api management gateway or should @ azure web api?

  2. can use django's built-in authentication system want or not needed?

  3. am over-complicating of this? there easier way this? seems lot of work.

  4. is openid connect should using (instead of oauth2)? have no experience either.

azure api management not provide kind of jwt issuing mechanism, you'll have implement yourself. end points doing may or may not exposed via api management.

what possibly gets confused fact apim portal supports various indentity providers, twitter or google, sign api. these not application users, these api portal users.

what can apim gateway validate subsequent calls backend api supplied jwt token valid (using <validate-jwt> policy).

hope helps (a little @ least), martin


Comments

Post a Comment

Popular posts from this blog

java - Run spring boot application error: Cannot instantiate interface org.springframework.context.ApplicationListener -

-
i have spring project , try make use spring boot , run @ embadded tomcat following : https://spring.io/guides/gs/rest-service/ this application //@configuration //@enableaspectjautoproxy @springbootapplication @componentscan(basepackages = "gux.prome") public class application { public static void main(string[] args) { springapplication.run(application.class, args); } } if use maven command: mvn spring-boot:run , project starts fine, need debug , run main method @ intelij, exception occurs: exception in thread "main" java.lang.illegalargumentexception: cannot instantiate interface org.springframework.context.applicationlistener : org.springframework.boot.logging.classpathloggingapplicationlistener @ org.springframework.boot.springapplication.createspringfactoriesinstances(springapplication.java:414) @ org.springframework.boot.springapplication.getspringfactoriesinstances(springapplication.java:394) @ org.springframework.bo...
Read more

python - pip wont install .WHL files -

-
when try install .whl gohike typing cmd c:\users\owner\downloads>pip install ta_lib-0.4.9-cp27-none-win_amd64.whl i print out: `processing c:\users\owner\downloads\ta_lib-0.4.9-cp27-none-win_amd64.whl complete output command python setup.py egg_info: traceback <most recent call last>: file "<string>", line 1, in <module> ioerror: [errno 2] no such file or directory:'c:\\users\\owner\\appdata\\lo cal\\temp\\pip-9gwk2c-build\\setup.py' ----------------------------------------- command "python setup.py egg_info" failed error code 1 in c:\users\owner\ap pdata\local\temp\pip-9gwk2c-build\` the part between pip- , -build in pip-9gwk2c-build different on same file. i asked python 2.7.11 pip 8.0.3 can't install gohike whl of ta-lib 0.4.9 few days ago , decided ask differently. can me! you have outdated pip not understand wheels. wheels not supposed have setup.py inside. try upgrading pip pip in...
Read more

Excel VBA "Microsoft Windows Common Controls 6.0 (SP6)" Location Changes -

-
i have excel workbook used generate quotations customers. there main page user inputs data, , there buttons generate various pdfs , send them customer. however, 1 user consistently getting error preventing generating , sending pdfs. i beleive "microsoft windows common controls 6.0 (sp6)". it's installed on users' computers. on mine, location "c:\windows\syswow64\mscomctl.ocx" on others "c:\windows\system32\mscomctl.ocx" the user experiencing issues on 32-bit machine, "mscomctl.ocx" file should in system32. have manually put in there, , pointed common controls reference in vba it. issue seems keep reverting looking in syswow64. since folder doesn't exist, can't find it, , can't produce pdfs. i thought perhaps issue user running older version of office (2007) there users on 2013 , 2016. thought perhaps mixture of 64-bit , 32-bit users. user gets sent workbook other users (as quotation process goes further, gets passed ...
Read more