Implementasi API Gateway Berbasis Protokol OAuth 2.0 Dan OpenID Connect Menggunakan Platform Kong

Nugraha, Muhammad Alam Cahya (2020) Implementasi API Gateway Berbasis Protokol OAuth 2.0 Dan OpenID Connect Menggunakan Platform Kong. Undergraduate thesis, Institut Teknologi Sepuluh Nopember Surabaya.

[img] Text
05111640000134-Undergraduate_Thesis.pdf - Accepted Version
Restricted to Repository staff only

Download (3MB) | Request a copy

Abstract

Di dalam organisasi (dalam hal ini DPTSI-ITS), membangun berbagai upstream API yang digunakan oleh berbagai macam pengguna (dosen, tendik, dan mahasiswa). Dalam implementasinya, setiap service yang dibuat memiliki sistem keamanan dan otorisasi secara individu dan masing-masing melakukan komunikasi dengan MyITS Single Sign On (SSO) sebagai authorization server. Hal tersebut menimbulkan perlakuan berulang-ulang dan tidak efisien. Dalam permasalahan tersebut, dibutuhkan suatu platform yang menjadi pintu utama setelah request terjadi, platform tersebut dapat mengatur keseluruhan aspek yang diperlukan dan terintegrasi dengan MyITS SSO sebagai authorization server hingga akhirnya request dapat diteruskan kepada service yang ditujukan. Kong merupakan platform open source yang berperan sebagai pintu utama dan mengolah seluruh request yang masuk sebelum diteruskan kepada service yang dituju. Kong berbasis bahasa LUA dan menggunakan lua modules (plugin) dalam implementasi berbagai aspek yang harus dilalui sebuah request hingga diteruskan ke service yang ditujukan. Tugas akhir ini menghasilkan API Gateway dengan platform Kong yang melakukan integrasi pada MyITS SSO melalui plugin pengembangan mandiri yang berfungsi mengolah setiap request yang masuk dan melakukan token introspect serta menambahkan data user dari hasil token introspect pada header dengan melakukan enkripsi JWT. ==================================================================================================================== In the related organization meant to be DPTSI-ITS, developing kind of upstream API that fulfil stakeholders (lecturers, staffs, and studenst) need. At the implementation level, every services that had been built have security and authorization system on their own and do communicate with MyITS Single Sign On (SSO) as the authorization server. That causing the behavior of repeating and becomes inefficient. On that problems, a platform needed that have the functionality to become a gateway after a request occurs, the platform must be able to manage all the aspects needed and integrated with MyITS SSO as the authorization server then the request can be forwarded to related services. Kong is a open source platform who acts as a gateway and manage all of the request that occurs before forwarded to the related services. Kong built using LUA and use lua modules as their plugin in the implementation of aspect that must be passed by a request and ended forwarded to the related services. The purpose of this thesis is to provide the API Gateway using Kong as the platform that do integrate with MyITS SSO through self developed plugin that have the functionality of doing token introspection and inject user data from the result of token introspection to the header wrapped by JWT to all request occurs.

Item Type: Thesis (Undergraduate)
Uncontrolled Keywords: Kong API Gateway, Konga, Single Sign-On, OAuth 2.0, JWT
Subjects: T Technology > T Technology (General) > T56.8 Project Management
T Technology > T Technology (General) > T58.6 Management information systems
T Technology > T Technology (General) > T58.8 Productivity. Efficiency
Divisions: Faculty of Intelligent Electrical and Informatics Technology (ELECTICS) > Informatics Engineering > (S1) Undergraduate Thesis
Depositing User: Muhammad Alam Cahya Nugraha
Date Deposited: 30 Jul 2020 05:09
Last Modified: 30 Jul 2020 05:09
URI: http://repository.its.ac.id/id/eprint/76664

Actions (login required)

View Item View Item