Help Center/ Cloud Service Engine/ User Guide/ ServiceComb Engines/ Microservice Governance (Applicable to ServiceComb Engine 1.x and 2.4.0+)/ Configuring Public Key Authentication
Updated on 2025-08-29 GMT+08:00
View PDF
Share

Configuring Public Key Authentication

Public key authentication is a simple and efficient authentication mechanism between microservices provided by CSE. Its security is based on the reliable interaction between microservices and the service center. That is, the authentication mechanism must be enabled between microservices and the service center. The procedure is as follows:

  1. When a microservice starts, a key pair is generated and the public key is registered with the service center.
  2. Before accessing the provider, the consumer uses its own private key to sign a message.
  3. The provider obtains the public key of the consumer from the service center and verifies the signed message.

To enable public key authentication, perform the following steps:

  1. Enable public key authentication for both the consumer and provider. 
    servicecomb:
  handler:
    chain:
      Consumer:
        default: auth-consumer
      Provider:
        default: auth-provider
  2. Add the following dependency to the pom.xml file: 
    <dependency> 
    <groupId>org.apache.servicecomb</groupId> 
    <artifactId>handler-publickey-auth</artifactId> 
  </dependency>