Category: Data, Redis
A typical OAuth 2 scenario: Often in a single page application (SPA), we see that the UX layer is responsible for both the GET call to the authorization code endpoint as well as the POST call to the access token endpoint to exchange the authorization code with the access token.
While this approach works, it leads to a number of problems: Add a server-side component to get the authorization code and exchange it for an access token.
Our service can use the refresh token to get a new access token followed by putting this new value in cache — both local and backing.
The method proxyBusinessMethod received the GET request and, in turn, read access_token from the cache and used that to call the "actual" business method.
While this approach works, it leads to a number of problems: Add a server-side component to get the authorization code and exchange it for an access token.
Our service can use the refresh token to get a new access token followed by putting this new value in cache — both local and backing.
The method proxyBusinessMethod received the GET request and, in turn, read access_token from the cache and used that to call the "actual" business method.
Related Articles
Community Partners
DevOps Careers