2.8 About Authentication and Authorization

Authentication ensures that only authorized individuals can access the Transaction Manager for Microservices (MicroTx) coordinator, the microservices, transaction, and data. Authorization provides access control to system privileges and data. This builds on authentication to ensure that individuals get appropriate access.

• About Access and Refresh Tokens
  Use access and refresh tokens to ensure that only authenticated users can access the service and to permit only the administrative user or the user that originally initiated the transaction to manage a transaction.
• About the Oracle_Tmm_Tx_Token Transaction Token
  Enable the creation and propagation of the transaction token to ensure that only authorized users have access to the service. When you set transactionTokenEnabled to true in the YAML file, MicroTx creates a new token called Oracle_Tmm_Tx_Token, which is a signed transaction token.
• About Encrypting and Storing Tokens
  To support asynchronous calls, MicroTx stores the access and refresh tokens, and then uses it in asynchronous calls.