One alternative to centralized role servers is to use client certificates. I've ... | Hacker News

Hacker Timesnew | past | comments | ask | show | jobs | submit

		shanemhansen on Feb 26, 2015 \| parent \| context \| favorite \| on: Adopting Microservices at Netflix: Lessons for Arc... One alternative to centralized role servers is to use client certificates. I've used x509 certs for this purpose. They are pretty hairy, but so is rolling your own authentication/authorization/token system.

reubenbond on Feb 26, 2015 [–]

Another alternative is JSON Web Tokens. Many of the benefits of Client Certificates while avoiding many of the hardships.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact