During the last couple of months I have been discussing OAuth2 usage in enterprises with a few friends and developers at our local meetups. People clearly understand the basic concepts behind it. They use it to login with their gmail, twitter or facebook accounts on third party websites. So they have an idea, but … […]

Read more

This post is about using JSON Web Token (JWT) with JAX-RS It features; A real quick intro to JWT Instructions for how to use it with JAX-RS (for authentication) with an example In addition, the post… Demonstrates contextual state/information sharing feature provided by JAX-RS Request Filters and usage of custom Security Context in JAX-RS Uses the jose4j library for JWT creation […]

Read more

John Field speaks at JavaOne 2014 With the move to the cloud, doing application security right is more important than ever. And although the Java EE architecture provides the necessary enablement, most developers do not have the time or the training to take full advantage of all the available tools. This technical session describes and demos an end-to-end […]

Read more