A sequential and easy-to-follow guide which allows you to understand the concepts related to securing web apps/services quickly and efficiently, since each topic is explained and described with the help of an example and in a step-by-step manner, helping you to easily implement the examples in your own projects. This book is intended for web application developers who use RESTful web services to power their websites. Prior knowledge of RESTful is not mandatory, but would be advisable.

What you will learn

Set up, implement, and personalize your development and test environment
Learn, understand, and assimilate concepts inherent to security management on RESTful applications and the importance of these concepts
Implement and test security on your applications that use RESTful web services with the most useful techniques and interpret the test results
Apply and configure secure protocols on your application
Implement, configure, and integrate other technologies such as OAuth or SSO with RESTful applications
Learn and assimilate security concepts at JEE application and container level
Understand digital signatures and message encryption through descriptive examples

What do you get with eBook?

Instant access to your Digital eBook purchase

Download this book in EPUB and PDF formats

Access this title in our online reader with advanced features

DRM FREE - Read whenever, wherever and however you want

Frequently bought together

RESTful Java Web Services, Second Edition

$48.99

$26.99

$36.99

Total $ 112.97

Filter reviews by

All

Amazon verified reviews

Meghna Kartha Nov 22, 2015

A well explained case study to get an introduction to security and restful webservices.

Amazon Verified review

Richard Mar 27, 2015

Good book to get Hands on security.

Kindle Customer Feb 23, 2015

Over the last few weeks I have been heavily involved in migrating a SOAP based enterprise system to a REST architecture. As part of the migration, the security framework also needed to be overhauled. Being an enterprise system, there are many integration points with external parties and security is a prime concern.During this time, this book has been my "go to" book on security regarding RESTful services. As a reference on topics related to security and RESTful services this book is both comprehensive and pragmatic, a combination that saved me lots of time. This book is perfectly suited for someone that needs to get something up and running in a short period of time. It does not spend too much time on theory, instead it focusses on the practical steps you need to take to get something working. However, unlike a simple cookbook, it explains things in enough detail so that you understand why you are doing something rather than simply how to accomplish the task.The book uses an example based, practical approach to explain the concepts it covers. Even though I was implementing on the IBM (Apache Wink) stack and the book covers the RESTEasy implementation (JBoss) of JAX-RS, it was straightforward to take the examples presented and adapt it for my needs. Perhaps the code that comes with the book could be augmented to include examples demonstrating other implementations (I think Jersey and Restlet would be great for most developers).In the end, no other resource has covered the areas to provide comprehensive security in a RESTful architecture as completely and simply as this book and I would recommend this book to anyone working at securing RESTful endpoints.

Luca Morettoni Feb 13, 2015

The "security" need to be a must on every kind of application, but if we plan to expose our applications business logic with RESTful services we need to think two times about secure implementation on that layer.The book is a great introduction to the security of the RESTful system, drives the programmer to implement different layers of security, from the user authentication and authorization to the encryption and signature of the payload. It is also a good quick reference for every developer that need to implement OAuth and/or digital signature of the data.What I didn't liked on the book that is too much tight to RESTeasy implementation, I hope in the future editions to see also some references to the Jersey implementation!At the end is a good book and if you're working on RESTful Java project you need to read it!

W Boudville Feb 06, 2015

The book may be pertinent to programmers of cloud computing. The authors strive to make the discussion relevant in the context of you having applications that hook up to Facebook, Twitter, Tumblr and others. Often, sites like these expose an API for an overlay of independent firms (like yours?) to build analysis engines.One practical consequence is that unlike a book on RESTful web services from a few years ago, there is now an explanation of authentication using API keys. Perhaps earlier texts had underplayed this, not appreciating its then significance. As you can appreciate, web security is now a crucial part of practical deployed web services. The book devotes quite a bit of space to the topic.Some readers will appreciate that you don't need a background in the deep level maths of public and private keys. The book keeps the discussion at a level that deprecates the essential maths to lower level routines that can be safeful ignored. Your remit is to understand and use the management of these keys.The closest we get to the maths is in the last chapter. But even here, it is not the maths you need to understand, but the tasks above it, like verifying signatures and encrypting a message body.

Restful Java Web Services Security: Secure your RESTful applications against common vulnerabilities with this book and eBook.

What do you get with eBook?