Hi, I'm currently working on OAuth 1.0 extension for CXF JAXRS module. You can find source code at: https://svn.apache.org/repos/asf/cxf/sandbox/oauth_1.0a/rt/rs/ It is in early stage of development but maybe you will be interested.
Check this as well: http://cxf.547215.n5.nabble.com/OAuth-client-and-server-demos-td1107099.html#a1107099 Hope it helps! Cheers, Lukasz 2010/7/20 Dan King <[email protected]>: > Hi all, > > I want to secure my restful web service, which is used internally only (i.e. > no > 3rd parties) and is accessed via a web tier using java, javascript, and flex. > However, I do not want to use basic authentication security, since I do want > to > transfer back-and-forth the user name and password with each request. > > I've looked into both OAuth and SSO as options for securing the web service, > I'm > just not sure whether either is sensible. I'd appreciate it if others could > share what approach (OAuth, SSO, or whatever else used) they took for securing > their web service and why they selected that approach. > > Also, if anyone knows where to find an implementation guide for OAuth, I'd > appreciate it if you could pass along that information. Thanks. > > -Dan > > > > > >
