how to secure my java REST API

Asked Oct 16 '15 at 18:26

Active Oct 16 '15 at 18:26

Viewed 90 times

I have a REST API in java that displays some confidential data. Now, even if i use an auth token, if some one has a proxy installed can see that data i.e., the client-Id etc that is used to get the auth token, and then use the auth token to hit the REST API.

Is there a way to prevent this.

asked Oct 16 '15 at 18:26

Gaurav

3

What about using SSL? It would ensure that the communication doesn't allow a middle-man attack – Monomachus Oct 16 '15 at 18:32
i guess we can download the certificate and add it to the proxy client.? can't we? – Gaurav Oct 16 '15 at 18:37
2

http://stackoverflow.com/questions/7238094/securing-rest-api-without-reinventing-the-wheel – Ravindra babu Oct 16 '15 at 18:50

how to secure my java REST API

0 Answers0