This system manages user permissions based on their roles. It ensures users can only access resources allowed by their assigned roles. The system must be scalable, secure, and support multiple microservices enforcing access control consistently.
User
|
v
Load Balancer
|
v
API Gateway
|
v
+----------------+ +---------------------+
| Auth Service |<----->| Role Management |
| (Token Issuer) | | Service |
+----------------+ +---------------------+
|
v
+----------------+
| Microservice A |
+----------------+
|
v
+----------------+
| Database |
+----------------+
Cache (Redis) connected to Auth Service and Role Management Service for fast role lookup