I'm working defining some endpoints for a Monolithic Redesign and we're in the process of defining the endpoints, when we add security we wanted an easy way to implement security and that's why we use jersey for the feature of namebinding (read some posts i've done before).

Thing is, we don't want to use jersey, we want to be cool :) and use spring boot based stuff, so we decided to migrate from Jersey to Spring MVC (which is what spring boot is 'compatible' with) but we faced the issue of authentication/authorization, so we decide to use spring security, below are the links and a github POC i've done for this.

This link is from an interesting article some guy named Patrick Lenza wrote, this post is kind of old, but gave me an idea of how spring security works.

Exploring Spring-Boot and Spring-Security: Custom token based authentication of REST services with Spring-Security and pinch of Spring Java Configuration and Spring Integration Testing

This link is from a projec that I followed and i implemented to understand how spring security works from a basic project, by some guy named Alvaro Javier Morgan

Securizar un API REST utilizando JSON Web Tokens

And this is the link of github project that i created...

https://bitbucket.org/richcoto/spring_security_poc/src/master/