Hello, I need to host & secure my RestAPI using JWT, the entire solution should be in Mendix and I can think of a solution as below Build an independent Auth Server (Identity Provider) to Generate a JWT for its subscribers (client system) using a Private Key. We want to develop this as a shared middleware for other applications in customer’s IT landscape not limiting its usage to only one application. Key Manager – I am wondering if I should extend the Auth Server to Generate and Manage the keys for subscribers Resource Server (Mx App) to host the API which will Verify the Token sent by the Client System using a Public Key and provide access to the protected data Any suggestions on the design approach? Is there any better or easier way to accomplish this? Regards, Johnson.
asked
Johnson Dsouza
1 answers
1
Dear Johnson,
JWT module from marketplace can be used to achieve this