Authorization Properties

4.2.5.4 Authorization Properties

MicroTx Distributed Transactions supports authorization across participant services and coordinator by propagating the JWT token in every request.

Under tmmConfiguration.authorization, use the authTokenPropagationEnabled field to control this function. Configure your identity providers to auto-refresh the expired access tokens at the coordinator.

Property Description

Property	Description
`enabled`	Set this to `true` to enforce RBAC rules on the MicroTx Distributed Transactions coordinator API access. The first step in authorization is to enforce RBAC controls at the MicroTx Distributed Transactions coordinator. Caution: You must set this field to `true` in production environments.
`authTokenPropagationEnabled`	Set this to `true` to enable token propagation to ensure secure communication between the participant services and MicroTx Distributed Transactions. MicroTx Distributed Transactions performs the following actions: The MicroTx Distributed Transactions libraries propagate the authorization headers in every outgoing call to the MicroTx Distributed Transactions coordinator. The coordinator uses the propagated access token from incoming requests for the authorization checks. The MicroTx Distributed Transactions coordinator encrypts and stores the access token and refresh token details in the transaction store. These tokens are appended in the callback API calls from the MicroTx Distributed Transactions coordinator to the MicroTx Distributed Transactions library that is present in the participant application. When you enable token propagation, you must provide the details for the encryption keys under the `encryption` property in the `values.yaml` file.

enabled

Set this to true to enforce RBAC rules on the MicroTx Distributed Transactions coordinator API access. The first step in authorization is to enforce RBAC controls at the MicroTx Distributed Transactions coordinator.

Caution:

You must set this field to true in production environments.

authTokenPropagationEnabled

Set this to true to enable token propagation to ensure secure communication between the participant services and MicroTx Distributed Transactions. MicroTx Distributed Transactions performs the following actions:

The MicroTx Distributed Transactions libraries propagate the authorization headers in every outgoing call to the MicroTx Distributed Transactions coordinator. The coordinator uses the propagated access token from incoming requests for the authorization checks.
The MicroTx Distributed Transactions coordinator encrypts and stores the access token and refresh token details in the transaction store. These tokens are appended in the callback API calls from the MicroTx Distributed Transactions coordinator to the MicroTx Distributed Transactions library that is present in the participant application.

When you enable token propagation, you must provide the details for the encryption keys under the encryption property in the values.yaml file.

Parent topic: Security Configuration Properties