These days, most API endpoints are protected by OAuth 2.0 standard either through an API Gateway or distributed verification based on JWT tokens by the services themselves.
In a microservices architecture, there are lots of service to service communications. The traditional Monolithic API Gateway won’t work in this case as it becomes the single point of failure and bottleneck.
In most microservices platforms, JWT is used instead of simple web token which has to go to the OAuth 2.
Read More »