November 24, 2019

175 words 1 min read

Securing Your Services with Authentication, Authorization, and RBAC in gRPC

Securing Your Services with Authentication, Authorization, and RBAC in gRPC

gRPC makes it extremely simple to write complex, business-critical services, in a vast number of programming languages. Its simplicity and adaptability has made it simple for developers to adopt by ea …
Talk Title Securing Your Services with Authentication, Authorization, and RBAC in gRPC
Speakers Luis Pabón (MTS, Portworx)
Conference KubeCon + CloudNativeCon North America
Conf Tag
Location San Diego, CA, USA
Date Nov 15-21, 2019
URL Talk Page
Slides Talk Slides
Video

gRPC makes it extremely simple to write complex, business-critical services, in a vast number of programming languages. Its simplicity and adaptability has made it simple for developers to adopt by easily generating code from structures and messages defined as protocol buffers. Writing a secure service based on gRPC, on the other hand, takes a little more effort. In this talk, we will be going through a model of how to secure a gRPC service using JWT based tokens to authenticate user access by relying on interceptors. We will also discuss models of how to provide role-based access control to authorize user access.

grpc code programming
comments powered by Disqus
Infrastructure as Software

Infrastructure as Software

October 30, 2019

Infrastructure as code has facilitated the automated provisioning of computing resources, however the cognitive overhead of adopting new DSLs, the verbosity of declaratively defining resources in temp …
Five Cool Things You Can Do with Network Service Mesh

Five Cool Things You Can Do with Network Service Mesh

November 23, 2019

Network Service Mesh enables hybrid/multi-cloud IP Service Mesh at the granularity of individual workloads. This expands the realm of connectivity options to include things never before possible. Afte …
Tinder's Move to Kubernetes

Tinder's Move to Kubernetes

November 21, 2019

Almost 2 years ago, Tinder decided to move its platform to Kubernetes. Kubernetes afforded us an opportunity to drive Tinder Engineering toward containerization and low-touch operation through immutab …
Lightning Talk: When the Command Line is Not Enough: Why Your OSS Project Needs A GUI

Lightning Talk: When the Command Line is Not Enough: Why Your OSS Project Needs A GUI

November 17, 2019

In the ops and infrastructure world, we often rely on command line interfaces to do most of our heavy lifting. What value can a proxy get out of having a dashboard? How can a GUI complement a CLI? In …
Tutorial: Cloud-Agnostic Serverless

Tutorial: Cloud-Agnostic Serverless

November 14, 2019

Serverless design patterns have grown in popularity because they allow developers to move faster by focusing on business logic without worrying about the underlying infrastructure where their code is …
Intro: CLI SIG

Intro: CLI SIG

November 13, 2019

This "intro" session will provide basic information to facilitate new SIG CLI contributors. This session will present an overview of the "kubectl" code base, as well as the basics of the development p …