Welcome to OStack Knowledge Sharing Community for programmer and developer-Open, Learning and Share
Welcome To Ask or Share your Answers For Others

Categories

0 votes
3.8k views
in Technique[技术] by (71.8m points)

微服务下的前后台用户是否分开?

前台用户和后台用户都是设计在一张表里面的吗,比如只有sys_user表,然后字段区分前后台用户,还是说两张表存储的?如果两张表的设计认证授权又是如何解决的?有没有相关经验的朋友可以分享一下。


与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome To Ask or Share your Answers For Others

1 Answer

0 votes
by (71.8m points)

分开不分开本身和微服务应该关系不大,更多应是管理上和安全上的考虑。分开显然更安全一些。用户需要重新登录才能进入后台,避免因前后台共用session,使得XSS等攻击变得更容易 。


与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome to OStack Knowledge Sharing Community for programmer and developer-Open, Learning and Share
Click Here to Ask a Question

2.1m questions

2.1m answers

60 comments

57.0k users

...