Hi, You can evaluate the Digest and SAML authentication schemes: http://cxf.apache.org/docs/secure-jax-rs-services.html . Also using OAuth2 instead of Basic can be interesting: http://apiux.com/2013/07/10/oauth-2-trumps-basic-authentication/
See the discussion in following thread with similar requirement: http://cxf.547215.n5.nabble.com/Can-I-use-a-simpler-secured-service-scheme-than-oauth2-tt5738791.html Regards, Andrei. > -----Original Message----- > From: blacar [mailto:[email protected]] > Sent: Mittwoch, 26. Februar 2014 18:22 > To: [email protected] > Subject: CXF based security other than basic > > Hi guys, > > I need to add security to a JAX-RS http API based on CXF. > > In the past i've used basic authentication with CXF Security > interceptors/filters > > But now i don't like the idea of only base64-enciode credentials and would > want > something more robust. > > I know there a lot of work has been done in security area ... > > May you suggest me a reliable solution suitable to be implemented with CXF > without a tremendous effort? > > I am using CXF 2.7.8. > > Thanks in advance, > > > > -- > View this message in context: http://cxf.547215.n5.nabble.com/CXF-based- > security-other-than-basic-tp5740539.html > Sent from the cxf-user mailing list archive at Nabble.com.
