Fontes, Ramon dos ReisBoussiengui, Pedro Henrique Wilfride de Lima2023-09-202023-09-202023-08-14BOUSSIENGUI, Pedro Henrique Wilfride de Lima. Segurança no PagRN: Implementação do processo de autenticação e autorização usando OAuth 2.0 e programação orientada a aspectos. 2023. 73 f. Trabalho de Conclusão de Curso (Especialização em Residência em Tecnologia da Informação) - Instituto Metrópole Digital, Universidade Federal do Rio Grande do Norte, Natal, 2023.https://repositorio.ufrn.br/handle/123456789/54873In several software systems, implementing security for authentication and authorization can be a complex process, often due to the security requirements demanded by the criticality of the system, as is the case with PagRN. In this work, the implementation of the authorization and authentication process of the PagRN system was performed. The implementation aims to create a robust and modular security system that meets the security requirements and deals with the complexity of the rules associated with it. For authentication, the OAuth 2.0 protocol flow was used as the authorization model, and the open-source software Keycloak was used as the PagRN API authorization server. For authorization, aspect-oriented programming techniques were used to create reusable and parameterizable modules that perform specific tasks and intercept system endpoints. Validation of authentication and authorization was done through automated tests covering all stages, from system login to resoAttribution-NonCommercial-NoDerivs 3.0 Brazilhttp://creativecommons.org/licenses/by-nc-nd/3.0/br/AutenticaçãoAutorizaçãoOAuth 2.0KeycloakProgramação orientada a aspectosbachelorThesisCNPQ::CIENCIAS EXATAS E DA TERRA::CIENCIA DA COMPUTACAO::METODOLOGIA E TECNICAS DA COMPUTACAO::ENGENHARIA DE SOFTWARE