Find Answers For ... - Recent questions tagged authentication

Jersey JAX-RS, Tomcat, Basic Auth and Security Annotations

Fri, 06 Jan 2012 06:03:47 +0000

I need to secure a simple jersey RESTful API in a Tomcat 6.0.24 container. I'd like to keep the authentication with Basic Authentication using the tomcat-users.xml file to define the users and roles (this is for now, like I said its small).

Now, for authorization I'd like to be able to use the JSR 250 annotations like @RolesAllowed, @PermitAll, @DenyAll, etc.

I cannot for the life of me figure out how to wire this all up together.

I really don't want to go spring-security route, since I need something very simple at the current time.

Can someone point me in the right direction.

In short, how best to wire up a simple security mechanism for:

Jersey JAX-RS.
Tomcat.
Basic Authentication.
JSR 250 Annotations such as @RolesAllowed.

User authentication on a Jersey REST service

Fri, 06 Jan 2012 05:46:16 +0000

I am currently developing a REST application, which is using the Jersey framework. I would like to know a way that I can control user authentication. I have search a lot of places, and the closest article I have found is this: http://weblogs.java.net/blog/2008/03/07/authentication-jersey.

However this article can only be used whith a GlassFish server and a attached database. Is there anyway that I can implement an interface in Jersey and use it as a filter before reaching the requested REST resource?

I want to use basic authentication right now, but it should be flexible enough such that I can change that at a later time.

Thanks in Advance Stefan.

How to write an authentication filter using Jersey

Fri, 06 Jan 2012 04:37:40 +0000

Can anyone provide an example or a way to achive the authentication filter using jersey REST frame Work