Patterns · Security
Patterns to authenticate and authorize requests across service boundaries. In a microservices architecture, every inter-service call is a network call — security must be enforced at the edge and verified downstream.
Use tokens to securely propagate client identity from the API Gateway to downstream services, enabling stateless authorization without sharing credentials.
JSON Web Tokens are self-contained, signed tokens that carry user claims directly, enabling services to validate identity locally without calling the auth service.