Hi,
I have a jax-rs based system. I want to protect a user from accessing the
resource that belongs to other user.
i.e Say User1 have account A1 and User2 have A2. Account resource url could
be like *https:/example.com/account/{accountid}*
Now User1 should NOT able access *https:/example.com/account/A2*, and when
ever such attempt is made then 403 should be thrown.
Is there any generic way to solve this problem of duplicate code other than
checking in each resource "if the resource belongs to the Principle User"
Can I achieve this using OAuth. Please give me some links if you have any
example code or article.
Thanks in advance.
--
You received this message because you are subscribed to the Google Groups
"OAuth" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
