Hi Everyone, I have been trying to explore the possibility of exploring apache ranger for centralized authorization in a microservice architecture.
I'm think thinking of two possibilities:
1) Integrating ranger plugin with all the services and authorize the request coming to them by intercepting the request.
The drawback here is that I will have to implement this common functionality in all the applications.
2) Creating a separate application for authorization, which will implement the ranger sdk to pull all the policies and configurations from Apache ranger and authorize a request using the ranger sdk, after authorization forward the request to the microservice.
The drawback here is that I may not be able to use the existing plugins for Nifi, Kafka etc. when trying to use a centralized solution.
What would be the best approach to implement, if someone has implemented something similar can you provide some thought on this? Or is there an even better way of doing this?
