{"id":"https://openalex.org/W4214776459","doi":"https://doi.org/10.3390/s22051703","title":"Applying Spring Security Framework with KeyCloak-Based OAuth2 to Protect Microservice Architecture APIs: A Case Study","display_name":"Applying Spring Security Framework with KeyCloak-Based OAuth2 to Protect Microservice Architecture APIs: A Case Study","publication_year":2022,"publication_date":"2022-02-22","ids":{"openalex":"https://openalex.org/W4214776459","doi":"https://doi.org/10.3390/s22051703","pmid":"https://pubmed.ncbi.nlm.nih.gov/35270850"},"language":"en","primary_location":{"id":"doi:10.3390/s22051703","is_oa":true,"landing_page_url":"https://doi.org/10.3390/s22051703","pdf_url":"https://www.mdpi.com/1424-8220/22/5/1703/pdf?version=1646020803","source":{"id":"https://openalex.org/S101949793","display_name":"Sensors","issn_l":"1424-8220","issn":["1424-8220"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Sensors","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj","pubmed"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://www.mdpi.com/1424-8220/22/5/1703/pdf?version=1646020803","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5063683767","display_name":"Ayan Chatterjee","orcid":"https://orcid.org/0000-0003-0407-7702"},"institutions":[{"id":"https://openalex.org/I200650556","display_name":"University of Agder","ror":"https://ror.org/03x297z98","country_code":"NO","type":"education","lineage":["https://openalex.org/I200650556"]}],"countries":["NO"],"is_corresponding":true,"raw_author_name":"Ayan Chatterjee","raw_affiliation_strings":["Department of Information and Communication Technology, Centre for e-Health, University of Agder, 4630 Kristiansand, Norway"],"raw_orcid":"https://orcid.org/0000-0003-0407-7702","affiliations":[{"raw_affiliation_string":"Department of Information and Communication Technology, Centre for e-Health, University of Agder, 4630 Kristiansand, Norway","institution_ids":["https://openalex.org/I200650556"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5087675927","display_name":"Andreas Prinz","orcid":"https://orcid.org/0000-0002-0646-2877"},"institutions":[{"id":"https://openalex.org/I200650556","display_name":"University of Agder","ror":"https://ror.org/03x297z98","country_code":"NO","type":"education","lineage":["https://openalex.org/I200650556"]}],"countries":["NO"],"is_corresponding":false,"raw_author_name":"Andreas Prinz","raw_affiliation_strings":["Department of Information and Communication Technology, Centre for e-Health, University of Agder, 4630 Kristiansand, Norway"],"raw_orcid":"https://orcid.org/0000-0002-0646-2877","affiliations":[{"raw_affiliation_string":"Department of Information and Communication Technology, Centre for e-Health, University of Agder, 4630 Kristiansand, Norway","institution_ids":["https://openalex.org/I200650556"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5063683767"],"corresponding_institution_ids":["https://openalex.org/I200650556"],"apc_list":{"value":2400,"currency":"CHF","value_usd":2598},"apc_paid":{"value":2400,"currency":"CHF","value_usd":2598},"fwci":6.1317,"has_fulltext":true,"cited_by_count":44,"citation_normalized_percentile":{"value":0.96783015,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":100},"biblio":{"volume":"22","issue":"5","first_page":"1703","last_page":"1703"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10273","display_name":"IoT and Edge/Fog Computing","score":0.9951000213623047,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10273","display_name":"IoT and Edge/Fog Computing","score":0.9951000213623047,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9927999973297119,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9926999807357788,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6448897123336792},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6394170522689819},{"id":"https://openalex.org/keywords/transport-layer-security","display_name":"Transport Layer Security","score":0.5663778781890869},{"id":"https://openalex.org/keywords/key-exchange","display_name":"Key exchange","score":0.4928467273712158},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.4751298725605011},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.4477081298828125},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.41783928871154785},{"id":"https://openalex.org/keywords/public-key-cryptography","display_name":"Public-key cryptography","score":0.30589228868484497}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6448897123336792},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6394170522689819},{"id":"https://openalex.org/C148176105","wikidata":"https://www.wikidata.org/wiki/Q206494","display_name":"Transport Layer Security","level":3,"score":0.5663778781890869},{"id":"https://openalex.org/C99674996","wikidata":"https://www.wikidata.org/wiki/Q1414155","display_name":"Key exchange","level":4,"score":0.4928467273712158},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.4751298725605011},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.4477081298828125},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.41783928871154785},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.30589228868484497}],"mesh":[{"descriptor_ui":"D012984","descriptor_name":"Software","qualifier_ui":null,"qualifier_name":null,"is_major_topic":true},{"descriptor_ui":"D012984","descriptor_name":"Software","qualifier_ui":null,"qualifier_name":null,"is_major_topic":true},{"descriptor_ui":"D012984","descriptor_name":"Software","qualifier_ui":null,"qualifier_name":null,"is_major_topic":true},{"descriptor_ui":"D016494","descriptor_name":"Computer Security","qualifier_ui":null,"qualifier_name":null,"is_major_topic":true},{"descriptor_ui":"D016494","descriptor_name":"Computer Security","qualifier_ui":null,"qualifier_name":null,"is_major_topic":true},{"descriptor_ui":"D016494","descriptor_name":"Computer Security","qualifier_ui":null,"qualifier_name":null,"is_major_topic":true}],"locations_count":6,"locations":[{"id":"doi:10.3390/s22051703","is_oa":true,"landing_page_url":"https://doi.org/10.3390/s22051703","pdf_url":"https://www.mdpi.com/1424-8220/22/5/1703/pdf?version=1646020803","source":{"id":"https://openalex.org/S101949793","display_name":"Sensors","issn_l":"1424-8220","issn":["1424-8220"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Sensors","raw_type":"journal-article"},{"id":"pmid:35270850","is_oa":false,"landing_page_url":"https://pubmed.ncbi.nlm.nih.gov/35270850","pdf_url":null,"source":{"id":"https://openalex.org/S4306525036","display_name":"PubMed","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1299303238","host_organization_name":"National Institutes of Health","host_organization_lineage":["https://openalex.org/I1299303238"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Sensors (Basel, Switzerland)","raw_type":null},{"id":"pmh:oai:doaj.org/article:e4a11014eaac4b24836c0a263b306aac","is_oa":true,"landing_page_url":"https://doaj.org/article/e4a11014eaac4b24836c0a263b306aac","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Sensors, Vol 22, Iss 5, p 1703 (2022)","raw_type":"article"},{"id":"pmh:oai:mdpi.com:/1424-8220/22/5/1703/","is_oa":true,"landing_page_url":"https://dx.doi.org/10.3390/s22051703","pdf_url":null,"source":{"id":"https://openalex.org/S4306400947","display_name":"MDPI (MDPI AG)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210097602","host_organization_name":"Multidisciplinary Digital Publishing Institute (Switzerland)","host_organization_lineage":["https://openalex.org/I4210097602"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Sensors; Volume 22; Issue 5; Pages: 1703","raw_type":"Text"},{"id":"pmh:oai:pubmedcentral.nih.gov:8914669","is_oa":true,"landing_page_url":"https://www.ncbi.nlm.nih.gov/pmc/articles/8914669","pdf_url":null,"source":{"id":"https://openalex.org/S2764455111","display_name":"PubMed Central","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1299303238","host_organization_name":"National Institutes of Health","host_organization_lineage":["https://openalex.org/I1299303238"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Sensors (Basel)","raw_type":"Text"},{"id":"pmh:oai:uia.brage.unit.no:11250/3064872","is_oa":true,"landing_page_url":"https://hdl.handle.net/11250/3064872","pdf_url":null,"source":{"id":"https://openalex.org/S4306401716","display_name":"Duo Research Archive (University of Oslo)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I184942183","host_organization_name":"University of Oslo","host_organization_lineage":["https://openalex.org/I184942183"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"27","raw_type":"info:eu-repo/semantics/other"}],"best_oa_location":{"id":"doi:10.3390/s22051703","is_oa":true,"landing_page_url":"https://doi.org/10.3390/s22051703","pdf_url":"https://www.mdpi.com/1424-8220/22/5/1703/pdf?version=1646020803","source":{"id":"https://openalex.org/S101949793","display_name":"Sensors","issn_l":"1424-8220","issn":["1424-8220"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Sensors","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","score":0.6399999856948853,"display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320327751","display_name":"Universitetet i Agder","ror":"https://ror.org/03x297z98"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4214776459.pdf","grobid_xml":"https://content.openalex.org/works/W4214776459.grobid-xml"},"referenced_works_count":43,"referenced_works":["https://openalex.org/W1627702290","https://openalex.org/W1695868552","https://openalex.org/W1932509800","https://openalex.org/W1964978688","https://openalex.org/W1990752442","https://openalex.org/W1995006124","https://openalex.org/W2013581618","https://openalex.org/W2051027766","https://openalex.org/W2054702684","https://openalex.org/W2061504727","https://openalex.org/W2068201078","https://openalex.org/W2088588705","https://openalex.org/W2106672610","https://openalex.org/W2258475915","https://openalex.org/W2519441364","https://openalex.org/W2563693940","https://openalex.org/W2625374523","https://openalex.org/W2736368095","https://openalex.org/W2769735087","https://openalex.org/W2784070037","https://openalex.org/W2794918741","https://openalex.org/W2796339866","https://openalex.org/W2849203795","https://openalex.org/W2913323041","https://openalex.org/W2921022675","https://openalex.org/W2921520832","https://openalex.org/W2954692220","https://openalex.org/W2991905359","https://openalex.org/W2995082278","https://openalex.org/W3005245094","https://openalex.org/W3011512329","https://openalex.org/W3018067527","https://openalex.org/W3085051965","https://openalex.org/W3104249110","https://openalex.org/W3110188411","https://openalex.org/W3128701031","https://openalex.org/W3129203550","https://openalex.org/W3130767031","https://openalex.org/W3143254051","https://openalex.org/W3146101648","https://openalex.org/W6751634632","https://openalex.org/W6759966408","https://openalex.org/W6774042532"],"related_works":["https://openalex.org/W3171177138","https://openalex.org/W2123811836","https://openalex.org/W4287118054","https://openalex.org/W3183954686","https://openalex.org/W2888183313","https://openalex.org/W2024120540","https://openalex.org/W3165269102","https://openalex.org/W3009555975","https://openalex.org/W3004095230","https://openalex.org/W2949475239"],"abstract_inverted_index":{"In":[0,223],"this":[1],"study,":[2,103],"we":[3,52,93,104,225],"implemented":[4,33],"an":[5,108,198],"integrated":[6],"security":[7,36,55,98,140,176,234,246],"solution":[8,32,56,151,177,214],"with":[9,57,165,205,212],"Spring":[10],"Security":[11],"and":[12,21,44,64,74,87,106,115,127,144,156,184,240],"Keycloak":[13],"open-access":[14],"platform":[15],"(SSK)":[16],"to":[17,47,79,125,169],"secure":[18,75,123],"data":[19,131],"collection":[20],"exchange":[22,128],"over":[23,132],"microservice":[24,49,133,195],"architecture":[25],"application":[26],"programming":[27],"interfaces":[28],"(APIs).":[29],"The":[30,181,208],"adopted":[31,90,139],"the":[34,54,89,117,120,162,171,174,187,202,232],"following":[35,233],"features:":[37],"open":[38],"authorization,":[39],"multi-factor":[40],"authentication,":[41],"identity":[42],"brokering,":[43],"user":[45],"management":[46],"safeguard":[48],"APIs.":[50,134],"Then,":[51],"extended":[53],"a":[58,82,95,101,217,228,251],"virtual":[59],"private":[60],"network":[61,72],"(VPN),":[62],"Blowfish":[63],"crypt":[65],"(Bcrypt)":[66],"hash,":[67],"encryption":[68],"method,":[69],"API":[70],"key,":[71],"firewall,":[73],"socket":[76],"layer":[77],"(SSL)":[78],"build":[80],"up":[81],"digital":[83,122,179,210],"infrastructure.":[84,180],"To":[85],"accomplish":[86],"describe":[88],"SSK":[91,150,182,213,249],"solution,":[92],"utilized":[94,244],"web":[96],"engineering":[97],"method.":[99],"As":[100],"case":[102],"designed":[105],"developed":[107,209],"electronic":[109],"health":[110,130],"coaching":[111],"(eCoach)":[112],"prototype":[113,189],"system":[114,118,190],"hosted":[116],"in":[119,178,186,200],"expanded":[121],"infrastructure":[124,211],"collect":[126],"personal":[129],"We":[135,147,159],"further":[136],"described":[137],"our":[138,149],"solution's":[141],"procedural,":[142],"technical,":[143],"practical":[145],"considerations.":[146],"validated":[148],"implementation":[152,183],"by":[153],"theoretical":[154],"evaluation":[155],"experimental":[157],"testing.":[158],"have":[160,226],"compared":[161],"test":[163],"outcomes":[164],"related":[166],"studies":[167],"qualitatively":[168],"determine":[170],"efficacy":[172],"of":[173,219],"hybrid":[175,245],"configuration":[185],"eCoach":[188],"has":[191],"effectively":[192],"secured":[193],"its":[194],"APIs":[196],"from":[197],"attack":[199],"all":[201],"considered":[203],"scenarios":[204],"100%":[206],"accuracy.":[207],"efficiently":[215],"sustained":[216],"load":[218],"(\u2248)300":[220],"concurrent":[221],"users.":[222],"addition,":[224],"performed":[227],"qualitative":[229],"comparison":[230],"among":[231],"solutions:":[235],"Spring-based":[236],"security,":[237,239],"Keycloak-based":[238],"their":[241],"combination":[242],"(our":[243],"solution),":[247],"where":[248],"showed":[250],"promising":[252],"outcome.":[253]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":9},{"year":2024,"cited_by_count":9},{"year":2023,"cited_by_count":16},{"year":2022,"cited_by_count":7}],"updated_date":"2026-06-10T14:10:52.464848","created_date":"2025-10-10T00:00:00"}