JAX-RS, JWT & a pinch of JSR 375

This is another version of my previous blog on JAX-RS and JWT which includes a pinch of Java EE Security API (new JSR in Java EE 8). In case you are completely new to JSR 375, please jump to the last section of this blog and use the resources listed there

But, what’s new ?

Uses the following features powered by the draft JSR 375 implementation available here

  • HTTP Basic Authentication
  • an Embedded Identity Store

Changes made…

  • No need to define the actual realm, user and groups in the application server security configuration. The container realm used to act as the identity/credential store. This was replaced by implementation of an Embedded Identity Store by JSR 375. All that was required is the declaration of @EmbeddedIdentityStoreDefinition



Note: Java EE Security API also provides options for Database and LDAP as Identity Stores

  • POM changes: include the JSR 375 API and its RI

 More on JSR 375




About Abhishek

Currently working as a Senior Product Manager in the Oracle Cloud Application Development team with a focus on Oracle Cloud PaaS portfolio. When not hovering in the clouds, I stay grounded with Java EE
This entry was posted in Java EE and tagged , , , , , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s