Code name: isis

Domain: users, permissions, roles

The service responsible for managing roles and permissions. It returns a bearer token upon login, which is checked when calls are made to the other services.

Identity authenticates users with passwords, and provides bearer JWT tokens via which other services can check a request's authentication and authorization. Identity can also authenticate services and check if a service has the "right" to act in a user's name.