The User Service will stream the token blacklisted event. This service must be subscribed to it, so when a token is blacklisted, its is is stored in a local database. This database is then consulted by the BearerTokenAuthenticationManager through the BearerTokenAuthenticationManager#isInvalid(UUID) to determine if a token is allowed to be used or not.
Check the following permalink:
|
.filterWhen(token -> invalidTokenChecker.isInvalid(token.getTokenId()).map(flag -> !flag)) |
Depends on coding-eval-platform/users-service#19
The User Service will stream the token blacklisted event. This service must be subscribed to it, so when a token is blacklisted, its is is stored in a local database. This database is then consulted by the
BearerTokenAuthenticationManagerthrough theBearerTokenAuthenticationManager#isInvalid(UUID)to determine if a token is allowed to be used or not.Check the following permalink:
api-gateway/src/main/java/ar/edu/itba/cep/api_gateway/security/bearer/BearerTokenAuthenticationManager.java
Line 56 in ccec1ee
Depends on coding-eval-platform/users-service#19