Download your copy of our State of Authorization: Playbook Edition Get it now »

DZone Feature: Secure Java REST APIs With JSON, XACML, and ALFA

In this post, we’ll look at how to use a JSON XACML Policy Enforcement Point to secure REST API endpoints. We will use ALFA, XACML, and JSON to do so.

How to use a JSON XACML Policy Enforcement Point to secure REST API endpoints using ALFA, XACML, and JSON.

by David Brossard, for DZone

DZone

In this post, we’ll look at how to use a JSON XACML Policy Enforcement Point to secure REST API endpoints. We will use ALFA, XACML, and JSON to do so.

Setting the Scene

Let’s imagine we have a REST API that helps us manage purchase orders. The API provides users with the ability to view, edit, approve, and delete purchase orders.

Business Data

In this simple example, we will have data about employees and data about purchase orders. The simplified ER diagram looks like the following. (Read More)

Kelly O'Dwyer-Manuel

Media Contact

Kelly O'Dwyer-Manuel
VP, Brand and Communications
Axiomatics
kelly.odm@axiomatics.com

Archived under: