Permission Control

Understand the configuration and usage of Dubbo permission control

Feature Description

Control permissions in the registry through token verification to decide whether to issue a token to consumers, which can prevent consumers from bypassing the registry to access providers. Moreover, the authorization method can be flexibly changed through the registry without modifying or upgrading the provider.

/user-guide/images/dubbo-token.jpg

Usage Scenarios

To a certain extent, achieve trusted authentication between the client and server, preventing any client from gaining access and reducing the risk of security issues.

Usage Method

Global Settings

Enable token verification

  1. <!-- Random token, generated using UUID -->
  2. <dubbo:provider token="true" />

or

  1. <!-- Fixed token, equivalent to a password -->
  2. <dubbo:provider token="123456" />

Service Level Settings

  1. <!-- Random token, generated using UUID -->
  2. <dubbo:service interface="com.foo.BarService" token="true" />

or

  1. <!-- Fixed token, equivalent to a password -->
  2. <dubbo:service interface="com.foo.BarService" token="123456" />

Feedback

Was this page helpful?

Yes No

Last modified September 30, 2024: Update & Translate Overview Docs (#3040) (d37ebceaea7)