RESTful Java Web Services Security /

Mostrar otras versiones (1)

In Detail This book will serve as a practical companion for you to learn about common vulnerabilities when using RESTful services, and will provide you with an indispensable knowledge of the tools you can use to implement and test security on your applications. It will cover the fine details of sett...

Descripción completa

Detalles Bibliográficos
Clasificación:Libro Electrónico
Autor principal: Enriquez, Rene
Formato: Electrónico eBook
Idioma:Inglés
Publicado: Birmingham : Packt Publishing, 2014.
Temas:
Computer networks > Security measures.
Web sites > Security measures.
Java (Computer program language)
Réseaux d'ordinateurs > Sécurité > Mesures.
Sites Web > Sécurité > Mesures.
Java (Langage de programmation)
COMPUTERS > Security > Online Safety & Privacy.
COMPUTERS > Security > Networking.
COMPUTERS > Security > General.
Computer networks > Security measures
Web sites > Security measures
Engineering & Applied Sciences.
Computer Science.
Acceso en línea:Texto completo
Tabla de Contenidos:
  • Cover; Copyright; Credits; About the Authors; About the Reviewers; www.PacktPub.com; Table of Contents; Preface; Chapter 1: Setting Up the Environment; Downloading tools; Downloading links; Creating the base project; First functional example; Testing the example web service; Summary; Chapter 2: The Importance of Securing Web Services; The importance of security; Security management options; Authorization and authentication; Authentication; Authorization; Access control; Transport layer security; Basic authentication by providing user credentials; Digest access authentication.
  • An example with explanationAuthentication through certificates; API keys; Summary; Chapter 3: Security Management with RESTEasy; Fine-grained and coarse-grained security; Securing HTTP methods; HTTP method
  • POST; HTTP method
  • GET; Fine-grained security implementation through annotations; The @RolesAllowed annotation; The @DenyAll annotation; The @PermitAll annotation; Programmatical implementation of fine-grained security; Summary; Chapter 4: RESTEasy Skeleton Key; OAuth protocol; OAuth and RESTEasy Skeleton Key; What is RESTEasy Skeleton Key?; OAuth 2.0 authentication framework.
  • Main featuresOAuth2 implementation; Updating RESTEasy modules in JBoss; Setting up the configuration in JBoss; Implementing an OAuth client; SSO configuration for security management; OAuth token via Basic Auth; Running the application; Custom filters; Server-side filters; Client-side filters; Example usage of filters; Summary; Chapter 5: Digital Signatures and Encryption of Messages; Digital signatures; Updating RESTEasy JAR files; Applying digital signatures; Testing the functionality; Validating signatures with annotations; Message body encryption; Testing the functionality.
  • Enabling the server with HTTPSTesting the functionality; Summary; Index.

Ejemplares similares