To secure the system landscape as described in the introduction to this chapter, we will perform the following steps:

Encrypt external requests and responses to and from our external API using HTTPS to protect against eavesdropping

Authenticate and authorize users and client applications that access our APIs using OAuth 2.0 and OpenID Connect

Secure access to the discovery server, Netflix Eureka, using HTTP basic authentication