In this chapter, we applied Spring Security to each of our microservices. We then configured our chat service as a Gateway API using Spring Cloud Gateway. Finally, we brought on board Spring Session MongoDB and had it share session details with the other backend microservices.

After ensuring that SESSION IDs were propagated by Spring Cloud Gateway to all the backend services, we wrote authorization rules, both for REST endpoints as well as for WebSocket messages.

To wrap things up, we also secured our Config Server and our Eureka Server so that only our system can talk to them.

In the next chapter, we will take our social media platform to production. We'll deploy our microservices-based application to the cloud, and see how to scale and adjust various things. We'll also discover how Spring Boot makes adjusting things a breeze.