Book Image

RESTful Java Web Services, Second Edition

Book Image

RESTful Java Web Services, Second Edition

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
RESTful Java Web Services, Second Edition
Sep, 2015 | 354 pages
No titles found
Table of Contents (17 chapters)
RESTful Java Web Services Second Edition
RESTful Java Web Services Second Edition
Credits
Credits
About the Author
About the Author
Acknowledgments
Acknowledgments
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introducing the REST Architectural Style
Introducing the REST Architectural Style
The REST architectural style
Introducing HTTP
The core architectural elements of a RESTful system
Description and discovery of RESTful web services
Java tools and frameworks for building RESTful web services
Summary
2
Java APIs for JSON Processing
Java APIs for JSON Processing
A brief overview of JSON
Processing JSON data
Using JSR 353 – Java API for processing JSON
Using the Jackson API for processing JSON
Using the Gson API for processing JSON
Summary
3
Introducing the JAX-RS API
Introducing the JAX-RS API
An overview of JAX-RS
JAX-RS annotations
Returning additional metadata with responses
Understanding data binding rules in JAX-RS
Building your first RESTful web service with JAX-RS
Client APIs for accessing RESTful web services
Summary
4
Advanced Features in the JAX-RS API
Advanced Features in the JAX-RS API
Understanding subresources and subresource locators in JAX-RS
Exception handling in JAX-RS
Reporting errors using application exceptions
Introducing validations in JAX-RS applications
Supporting custom request-response message formats
Asynchronous RESTful web services
Asynchronous RESTful web service client
Managing HTTP cache in a RESTful web service
Understanding filters and interceptors in JAX-RS
Understanding the JAX-RS resource lifecycle
Summary
5
Introducing the Jersey Framework Extensions
Introducing the Jersey Framework Extensions
Specifying dependencies for Jersey
Programmatically configuring JAX-RS resources during deployment
Modifying JAX-RS resources during deployment using ModelProcessor
Building Hypermedia as the Engine of Application State (HATEOAS) APIs
Reading and writing binary large objects using Jersey APIs
Generating chunked output using Jersey APIs
Supporting Server Sent Event in RESTful web services
Understanding the Jersey server-side configuration properties
Monitoring RESTful web services using Jersey APIs
Summary
6
Securing RESTful Web Services
Securing RESTful Web Services
Securing and authenticating web services
HTTP basic authentication
HTTP digest authentication
Securing RESTful web services with OAuth
Authorizing the RESTful web service accesses via the security APIs
Input validation
Summary
7
The Description and Discovery of RESTful Web Services
The Description and Discovery of RESTful Web Services
Introduction to RESTful web services
Web Application Description Language
RESTful API Modeling Language
Swagger
Revisiting the features offered in WADL, RAML, and Swagger
Summary
8
RESTful API Design Guidelines
RESTful API Design Guidelines
Identifying resources in a problem domain
Transforming operations to HTTP methods
Naming RESTful web resources
Fine-grained and coarse-grained resource APIs
Using header parameter for content negotiation
Multilingual RESTful web API resources
Representing date and time in RESTful web resources
Implementing partial response
Implementing partial update
Returning modified resources to the caller
Paging resource collection
Implementing search and sort operations
Using HATEOAS in response representation
Versioning RESTful web APIs
Caching RESTful web API results
Using HTTP status codes in RESTful web APIs
Overriding HTTP methods
Documenting RESTful web APIs
Asynchronous execution of RESTful web APIs
Microservice architecture style for RESTful web applications
Using Open Data Protocol with RESTful web APIs
Summary
Useful Features and Techniques
Useful Features and Techniques
Tools for building a JAX-RS application
Integration testing of JAX-RS resources with Arquillian
Implementing PATCH support in JAX-RS resources
Using third-party entity provider frameworks with Jersey
Packaging and deploying JAX-RS applications
Summary
Index
Index

Authorizing the RESTful web service accesses via the security APIs

The authorization process verifies whether the client who has requested or initiated an action has the right to do so. In this section, we will see how to use the JAX-RS APIs for authorizing incoming REST API calls from various clients.

Using SecurityContext APIs to control access

We started off this chapter by discussing how an application authenticates a user who is trying to access a secured resource. When a client accesses a secured resource, the server identifies and validates the requester, and on successful authentication, the requester is allowed to get inside the application. During this process, the underlying security framework generates a javax.ws.rs.core.SecurityContext object that holds security related information pertaining to the requester. The JAX-RS framework allows you to access the SecurityContext object in the code in order to perform security checks in the code.

Some of the frequently used methods exposed...

Previous Section
End of Section 6
Next Section