DZone Feature: Secure Java REST APIs With JSON, XACML, and ALFA

How to use a JSON XACML Policy Enforcement Point to secure REST API endpoints using ALFA, XACML, and JSON.
by David Brossard, for DZone

In this post, we’ll look at how to use a JSON XACML Policy Enforcement Point to secure REST API endpoints. We will use ALFA, XACML, and JSON to do so.
Setting the Scene
Let’s imagine we have a REST API that helps us manage purchase orders. The API provides users with the ability to view, edit, approve, and delete purchase orders.
Business Data
In this simple example, we will have data about employees and data about purchase orders. The simplified ER diagram looks like the following. (Read More)

Media Contact
Samantha Berno
Corporate Communications Manager
Axiomatics
samantha.berno@axiomatics.com