Closed erikhofer closed 7 years ago
As discussed in #5 we'll use the built-in sessions of Spring Security for authentication for now. Authorization was designed in #6.
It seems like the proper way to implement this is by customizing the default form login (See e.g. http://www.baeldung.com/securing-a-restful-web-service-with-spring-security).
This is a more comprehensive guide: https://dzone.com/articles/secure-rest-services-using
As discussed in #5 we'll use the built-in sessions of Spring Security for authentication for now. Authorization was designed in #6.
It seems like the proper way to implement this is by customizing the default form login (See e.g. http://www.baeldung.com/securing-a-restful-web-service-with-spring-security).
This is a more comprehensive guide: https://dzone.com/articles/secure-rest-services-using