9.3. Enabling Security
In this section, in addition to your role as a developer, you assume the responsibility of an administrator for learning and practicing purposes. However, in real-life deployment situations, the two duties usually are not shared by a single person, because
The service providers are independent of the gateway operators from an operational perspective.
Merging the two roles would constitute conflicts of interest, because each service would like to have as little security restrictions as possible, which is usually not acceptable for overall security. Bear in mind that services from competitors are likely to coexist in the framework, and it won't be fair to allow one to regulate security, possibly at the sacrifice of another. ...
Get Programming Open Service Gateways with Java Embedded Server™ Technology now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
