Stage 5 3. Micro Services [online] _day18 studies authorized users authorized users _01- Business Process Analysis

1 user licensing business processes
authorized users the following business processes:


Business Process Description as follows:
1, user authentication, token authentication service writes (identity token) to the browser the cookie
2, the front end carries the token request user service center to obtain a token jwt
jwt get to the front token parsed and stored in sessionStorage
3, the front carrying the cookie identity token and token access to resources and services jwt
front-end service request resources required to carry two token, the cookie is a token of identity, is a jwt http header in the
front end before requesting service resources to add jwt on http header request resources
4, verify the legitimacy of the gateway token of
user requests must carry identity tokens and token jwt
gateway redis in user_token check the validity of the expired requires the user to log back
5, the legality of the service resources authorization check jwt and
resource service check jwt token, to complete the authorization, the method has the authority to execute normally, there is no way to deny access permissions

on the part not covered by the authorization, the following micro service was involved in the authorization.

When issuing tokens to the token which will join the user should have what rights