User authentication on a Jersey REST service

by

I’m sucessfully using spring security for securing my Jersey-based API. It has pluggable authentication schemes allowing you to switch from Basic Auth to something else later. I’m not using Spring in general, just the security stuff.

Here is the relevant part from my web.xml

<listener>
    <listener-class>
        org.springframework.web.context.ContextLoaderListener
    </listener-class>
</listener>

<context-param>
    <param-name>contextConfigLocation</param-name>
    <param-value>
        /WEB-INF/security-applicationContext.xml,
        /WEB-INF/applicationContext.xml
    </param-value>
</context-param>

<!-- Enables Spring Security -->

<filter>
    <filter-name>springSecurityFilterChain</filter-name>
    <filter-class>
        org.springframework.web.filter.DelegatingFilterProxy
    </filter-class>
    <init-param>
        <param-name>targetBeanName</param-name>
        <param-value>springSecurityFilterChain</param-value>
    </init-param>
</filter>

<filter-mapping>
    <filter-name>springSecurityFilterChain</filter-name>
    <url-pattern>/*</url-pattern>

</filter-mapping>

You can leave applicationContext.xml empty (<beans></beans>). An example of the security-applicationContext.xml can be found here

More Related Contents:

  1. Preemptive Basic Auth with HttpUrlConnection?
  2. Java: Login to url and download file [closed]
  3. Java – sending HTTP parameters via POST method easily
  4. Dependency injection with Jersey 2.0
  5. Input and Output binary streams using JERSEY?
  6. Authenticated HTTP proxy with Java
  7. How to access parameters in a RESTful POST method
  8. REST – HTTP Post Multipart with JSON
  9. Jersey Maven quickstart archetype in Eclipse
  10. Java HTTP Client Request with defined timeout
  11. what’s the correct way to send a file from REST web service to client?
  12. Java RestFull WebService: JAX-RS implementation with Jersey 2.3.1 libraries
  13. How can I read an HttpServletReponses output stream?
  14. Websocket Authentication and Authorization in Spring
  15. Jersey: Print the actual request
  16. MessageBodyWriter not found for media type=application/json
  17. How to set the connection and read timeout with Jersey 2.x?
  18. FileUpload with JAX-RS
  19. dll missing in JDBC
  20. Jersey 2 injection source for multipart formdata
  21. HK2 is not injecting the HttpServletRequest with jersey
  22. AbstractMethodError using UriBuilder on JAX-RS [duplicate]
  23. Is there a way to redirect to another Action class without using on struts.xml
  24. How to get host name with port from a http or https request
  25. How to return a JSON object from a HashMap with Moxy and Jersey
  26. What does Provider in JAX-RS mean?
  27. Asynchronous HTTP Client for Java
  28. posting XML request in java
  29. RestTemplate with pem certificate
  30. How can I use an HTTP proxy for a JAX-WS request without setting a system-wide property?

Leave a Comment