From the course: Java EE 7: Web Services
Join today to access over 22,700 courses taught by industry experts or purchase this course individually.
Secure web services - Java EE Tutorial
From the course: Java EE 7: Web Services
Secure web services
- [Instructor] When dealing with data, security is always important. We want to limit who can view or even update data. Only trusted individuals should have access. Authentication is about validating the identify of a client that is trying to call a service that accesses our data. Typically, identity is validated with user credentials, such as a username and password. Authorization is the next step after authentication. So once a client is authenticated, what do they have access to? Such as, what data can they view? Or are they allowed to make updates, et cetera? The case we're going to discuss is authentication. Basic authentication, to be exact. Basic authentication is the simplest protocol available for performing authentication over HTTP. The flow consists of sending a base 64-encoded username and password as a header request to the API. The username is typically checked to see if it exists within the system and the password is verified. In a real world scenario, the password is…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.