Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

SpringOne2GX 2015 Replay: The State of Securing RESTful APIs With Spring

DZone's Guide to

SpringOne2GX 2015 Replay: The State of Securing RESTful APIs With Spring

Check out this look at securing RESTful APIs with Spring in a recap of SpringOne2GX 2015.

· Java Zone ·
Free Resource

Download Microservices for Java Developers: A hands-on introduction to frameworks and containers. Brought to you in partnership with Red Hat.

The many benefits of a RESTful architecture has made it the standard way in which to design web based APIs. For example, the principles of REST state that we should leverage standard HTTP verbs which helps to keep our APIs simple. Server components that are considered RESTFul should be stateless which help to ensure that they can easily scale. We can leverage caching to gain further performance and scalability benefits.

However, the best practices of REST and security often seem to clash. How should a user be authenticated in a stateless application? How can a secured resource also support caching? Securing RESTful endpoints is further complicated by the fact that security best practices evolve so rapidly.

In this talk, Rob will discuss how to properly secure your RESTful endpoints. Along the way we will explore some common pitfalls when applying security to RESTful APIs. Finally, we will see how the new features in Spring Security can greatly simplify securing your RESTful APIs.

Recorded at SpringOne2GX 2015.
Track: Web/Javascript track
Speaker: Rob Winch
Slides: http://www.slideshare.net/SpringCentral/state-of-securing-restful-apis-with-spring

Download Building Reactive Microservices in Java: Asynchronous and Event-Based Application Design. Brought to you in partnership with Red Hat

Topics:
spring

Published at DZone with permission of

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}