Given these technologies: Java, JAX-RS (or RESTEasy og Jersey), Javascript, and jQuery. The servlet server is Tomcat or Jetty. The GUI will be created as an βapplicationβ using jQuery and Javascript. MVC or MVP templates will be used to separate the view from the model. It is planned to download the application after logging in. I need a recommendation on how to make a secure login and manage access (roles). So far, I know about SSL, encryption, security annotations (to protect methods), but still I need an overview and tips. So far, I plan to start reading the Java SE documentation at:
http://www.oracle.com/technetwork/java/javase/tech/index-jsp-136007.html#overview
Some input will be appreciated.
source share