DZone Feature: Secure Java REST APIs With JSON, XACML, and ALFA
How to use a JSON XACML Policy Enforcement Point to secure REST API endpoints using ALFA, XACML, and JSON.
by David Brossard, for DZone
In this post, we’ll look at how to use a JSON XACML Policy Enforcement Point to secure REST API endpoints. We will use ALFA, XACML, and JSON to do so.
Setting the Scene
Let’s imagine we have a REST API that helps us manage purchase orders. The API provides users with the ability to view, edit, approve, and delete purchase orders.
In this simple example, we will have data about employees and data about purchase orders. The simplified ER diagram looks like the following. (Read More)
Senior Director, Marketing Communications