Hi all -
I'm working on a service that restricts all access to a single user,
identified by x.509 certificate. Thus, authentication is certificate
based, and authorization for that user must be done on each service
endpoint within the service.
What I'd like to hear is that there's an access point provided by jersey
for authorizing any attempt to access a given service. Is this possible?
If not, then my approach would be to add a static call to the top of
each endpoint that potentially throws a WebApplicationException(401) if
the user is unauthorized.
Any advice would be much appreciated.
Thanks in advance,
John