In this lab you will integrate security features into the Brewz application, and use NGINX Ingress Controller to authorize access to specific APIs.
If you have completed the earlier labs in this workshop, you would have learned about the Brewz company, and their digital transformation efforts to date. If not, you can read about them here.
Note: Though it is recommended, it is not required that you complete labs 1-3 of this series before starting this lab.
For this lab, you will need:
- An F5.com account that is present in F5's Azure Active Directory
- GitHub account
- Visual Studio Code
- git
- kubectl
- GitHub CLI - optional
- cURL - Usually pre-installed in Unix-based Operating systems, available when using Windows with WSL installed.
Note: You will also need to request an NGINX Plus trial via SalesForce to obtain an NGINX Plus JWT file in order to deploy NGINX Ingress Controller from the NGINX official private registry.
- Setup the lab
- Examine the Checkout process overview
- Deploy the Checkout service
- Enable authentication and authorization in the Brewz SPA application
- Inspect the Brewz API JWT
- Secure the Checkout service
- Inspect and enforce the JWT
- Use JWT claim data