Book Image

RESTful Java Web Services, Second Edition

Book Image

RESTful Java Web Services, Second Edition

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
RESTful Java Web Services, Second Edition
Sep, 2015 | 354 pages
No titles found
Table of Contents (17 chapters)
RESTful Java Web Services Second Edition
RESTful Java Web Services Second Edition
Credits
Credits
About the Author
About the Author
Acknowledgments
Acknowledgments
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introducing the REST Architectural Style
Introducing the REST Architectural Style
The REST architectural style
Introducing HTTP
The core architectural elements of a RESTful system
Description and discovery of RESTful web services
Java tools and frameworks for building RESTful web services
Summary
2
Java APIs for JSON Processing
Java APIs for JSON Processing
A brief overview of JSON
Processing JSON data
Using JSR 353 – Java API for processing JSON
Using the Jackson API for processing JSON
Using the Gson API for processing JSON
Summary
3
Introducing the JAX-RS API
Introducing the JAX-RS API
An overview of JAX-RS
JAX-RS annotations
Returning additional metadata with responses
Understanding data binding rules in JAX-RS
Building your first RESTful web service with JAX-RS
Client APIs for accessing RESTful web services
Summary
4
Advanced Features in the JAX-RS API
Advanced Features in the JAX-RS API
Understanding subresources and subresource locators in JAX-RS
Exception handling in JAX-RS
Reporting errors using application exceptions
Introducing validations in JAX-RS applications
Supporting custom request-response message formats
Asynchronous RESTful web services
Asynchronous RESTful web service client
Managing HTTP cache in a RESTful web service
Understanding filters and interceptors in JAX-RS
Understanding the JAX-RS resource lifecycle
Summary
5
Introducing the Jersey Framework Extensions
Introducing the Jersey Framework Extensions
Specifying dependencies for Jersey
Programmatically configuring JAX-RS resources during deployment
Modifying JAX-RS resources during deployment using ModelProcessor
Building Hypermedia as the Engine of Application State (HATEOAS) APIs
Reading and writing binary large objects using Jersey APIs
Generating chunked output using Jersey APIs
Supporting Server Sent Event in RESTful web services
Understanding the Jersey server-side configuration properties
Monitoring RESTful web services using Jersey APIs
Summary
6
Securing RESTful Web Services
Securing RESTful Web Services
Securing and authenticating web services
HTTP basic authentication
HTTP digest authentication
Securing RESTful web services with OAuth
Authorizing the RESTful web service accesses via the security APIs
Input validation
Summary
7
The Description and Discovery of RESTful Web Services
The Description and Discovery of RESTful Web Services
Introduction to RESTful web services
Web Application Description Language
RESTful API Modeling Language
Swagger
Revisiting the features offered in WADL, RAML, and Swagger
Summary
8
RESTful API Design Guidelines
RESTful API Design Guidelines
Identifying resources in a problem domain
Transforming operations to HTTP methods
Naming RESTful web resources
Fine-grained and coarse-grained resource APIs
Using header parameter for content negotiation
Multilingual RESTful web API resources
Representing date and time in RESTful web resources
Implementing partial response
Implementing partial update
Returning modified resources to the caller
Paging resource collection
Implementing search and sort operations
Using HATEOAS in response representation
Versioning RESTful web APIs
Caching RESTful web API results
Using HTTP status codes in RESTful web APIs
Overriding HTTP methods
Documenting RESTful web APIs
Asynchronous execution of RESTful web APIs
Microservice architecture style for RESTful web applications
Using Open Data Protocol with RESTful web APIs
Summary
Useful Features and Techniques
Useful Features and Techniques
Tools for building a JAX-RS application
Integration testing of JAX-RS resources with Arquillian
Implementing PATCH support in JAX-RS resources
Using third-party entity provider frameworks with Jersey
Packaging and deploying JAX-RS applications
Summary
Index
Index

Securing RESTful web services with OAuth

OAuth is an open standard for authorization, used by many enterprises and service providers to protect resources. OAuth solves a different security problem than what HTTP basic authentication has been used for. OAuth protocol allows client applications to access protected resources on behalf of the resource owner (typically, the application user).

If we look at the history of this protocol, the OAuth Version 1.0 was published as RFC 5849 in 2010. Later, the next evolution of OAuth, Version 2.0, was published as RFC 6749 in 2012. Note that these two versions are different in their implementations and do not have many things in common. In this section, we will see what the OAuth protocol and its details are. We will also discuss how a RESTful web service client can access OAuth-protected RESTful web APIs.

Understanding the OAuth 1.0 protocol

The OAuth protocol specifies a process for resource owners to authorize third-party applications to access their...

Previous Section
End of Section 5
Next Section