Chapter 6: Security (Authorization and Authentication)

In previous chapters, we have developed RESTful web services (where REST stands for REpresentational State Transfer) using imperative and reactive coding styles. Now, you'll learn how you can secure these REST endpoints using Spring Security. You'll implement token-based authentication and authorization for REST endpoints. A successful authentication provides two types of tokens—a JavaScript Object Notation (JSON) Web Token (JWT) as an access token, and a refresh token in response. This JWT-based access token is then used to access the secured Uniform Resource Locators (URLs). A refresh token is used to request a new JWT if the existing JWT has expired, and a valid request token provides ...

Get Modern API Development with Spring and Spring Boot now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Modern API Development with Spring and Spring Boot by Sourabh Sharma

Chapter 6: Security (Authorization and Authentication)

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly