Server-to-Server authentication

Please advice on server-to-server authentication mechanism for distributed microservices backends (part of microservices are our own, with some external microservices provided by our partners).

For now, considering to just use public/private keys for authentication.
Are there better options? (e.g.easier to implement)

Hi @astepaniuk

You can use client credentials flow which is a flow that can be called from a server via HTTP request to retrieve an access token that can be further sent to a secondary server. From the secondary server, you can verify the access token using a JWT verifier.

1 Like