I am dealing these days with writing a Java EE application providing a REST API. This REST API needs to be secured somehow. I am trying to use JWT.
Interesting information
https://medium.com/@swhp/secure-javaee-rest-api-with-soteria-and-json-web-token-a6587c99924e
https://antoniogoncalves.org/2016/10/03/securing-jax-rs-endpoints-with-jwt/