You may enable the single sign-on feature on the API gateway just by annotating the main class with @EnableOAuth2Sso. Indeed, that is the best choice for your microservices architecture to force Zuul to generate or get the access token for the currently authenticated user:
@SpringBootApplication@EnableOAuth2Sso@EnableZuulProxypublic class GatewayApplication { public static void main(String[] args) { new SpringApplicationBuilder(GatewayApplication.class).web(true).run(args); }}
By including @EnableOAuth2Sso, you trigger an auto-configuration available for a ZuulFilter. The filter is responsible for extracting an access token from the currently authenticated user, and then putting it into the request header forwarded ...