[security-dev] Resteasy 3.0-beta-2 released with OAuth2 support

Anil Saldhana Anil.Saldhana at redhat.com
Fri Jan 25 10:06:58 EST 2013

Your write up is going to help a lot. I will go through the source tree 
and provide feedback.

The following test cases are relevant to OAuth2.  This is how PicketLink 
IDM can be used in an OAuth2 setup.

On 01/25/2013 08:21 AM, Bill Burke wrote:
> I need to write up how it works too.  I extended OAuth2 a tiny bit as
> well as JWT.  If you check out the code, you'll also see I started on an
> IDP.  If Picklink is ready, I could start implementing on top of it
> and/or contribute to the current effort you have on openshift.  Let me
> know.
> The current release's experience is a bit limited because you're lacking
> extra metadata that our own IDP could provide.
> My current vision on oauth clients is:
> * THey must be registered
> * They are granted oauth and/or login permissions
> * If they are only granted oauth permissions, they must also have the
> set of roles that they are allowed to obtain from a user
> Code:
> https://github.com/resteasy/Resteasy/tree/master/jaxrs/security/skeleton-key-idm
> On 1/24/2013 7:24 PM, Anil Saldhana wrote:
>> Fabulous news. Will provide feedback.
>> On Jan 24, 2013, at 4:43 PM, Bill Burke <bburke at redhat.com> wrote:
>>> http://bill.burkecentral.com/2013/01/24/resteasy-3-0-beta-2-released-with-new-oauth-2-0-features/
>>> --
>>> Bill Burke
>>> JBoss, a division of Red Hat
>>> http://bill.burkecentral.com

More information about the security-dev mailing list