Cool, I need to go back to review the AS document again.
From the AS Doc [3] below, I found the words below. In this case, in the JAX-RS
application, we can call the Carbon API instead of the Admin Service, am I
right?
In addition to the significant ease in hosting and managing, CXF-based
applications deployed in a Carbon instance automatically inherits all the
underlying capabilities of the platform. Some of them are listed below.
Ability to use the Carbon user store through CarbonContext.
Ability to use WSO2 Registry APIs through CarbonContext.
If I am right, does it mean the codes in the Admin Service almost can be run in
the JAX-RS application?
[3] https://docs.wso2.com/display/AS530/JAX-WS+and+JAX-RS+Support
Thanks, Wenxing
------------------ Original ------------------
From: "Lakshman Udayakantha";<[email protected]>;
Send time: Tuesday, Sep 27, 2016 5:12 PM
To: "wenxzhen"<[email protected]>;
Cc: "dev"<[email protected]>;
Subject: Re: [Dev] How to do authentication/authorization on JAX-RSRESTservice
running on WSO2 AS?
Hi Wenxing,
While go through the AS docs I found [1] to provide authentication and
authorizations for services deployed on WSO2 AS. That might suit for you.
[1]
https://docs.wso2.com/display/AS530/Developing+JAX-RS+Applications#DevelopingJAX-RSApplications-SecuringJAX-RSapplications
Thanks
On Tue, Sep 27, 2016 at 1:25 PM, wenxzhen <[email protected]> wrote:
Thansk to Lakshman.
I hope it's just only one of the solutions. But if don't want to deploy the API
manager, any other way?
From the post [1], we can see the JAX-RS provides the related mechanism to help
implementing the authentication and authorization. The main concern is that:
which carbon API can be called to do the work?
[1]
http://stackoverflow.com/questions/26777083/best-practice-for-rest-token-based-authentication-with-jax-rs-and-jersey
Regards, Wenxing
------------------ Original ------------------
From: "Lakshman Udayakantha";<[email protected]>;
Send time: Tuesday, Sep 27, 2016 4:19 PM
To: "wenxzhen"<[email protected]>;
Cc: "dev"<[email protected]>;
Subject: Re: [Dev] How to do authentication/authorization on JAX-RS
RESTservice running on WSO2 AS?
Hi Wenxing,
You can expose your rest services as REST APIs via WSO2 API Manager. In API
Manager we can provide authentication and authorization to APIs.
Thanks
On Tue, Sep 27, 2016 at 8:15 AM, wenxzhen <[email protected]> wrote:
Dear all,
For a JAX-RS REST service running on WSO2 AS, what's the best way to implement
the authentication and authorization for each REST API? Please kindly advice.
Thank you very much
Regards, Wenxing
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
--
Lakshman UdayakanthaWSO2 Inc. www.wso2.com
lean.enterprise.middleware
Mobile: 0717429601
--
Lakshman UdayakanthaWSO2 Inc. www.wso2.com
lean.enterprise.middleware
Mobile: 0717429601
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
