STS

The STS offered by KIT can be used to centralize authorization and encryption of communication between services, thus removing the need for individual services to implement authorization logic. The STS works by providing a public key that must be trusted by the clients that use it. Conversely, it must also be given the public key of the clients it will trust - the clients that are trusted will receive a token that they can use to call whatever service that trusts that particular STS. For a working example, see the open source KitCaddy repository.