3
Hello, I have a restful Java api using Jax RS that will be consumed by another application that will be online.
I would like to prevent people directly accessing the api, and yes, only by the web application.
Is there any way to do this lock without having to create a password authentication system?
I had thought to control by the IP of the web application server, but as the requests are ajax, the IP that would be sent is that of the client. Then it wouldn’t be possible.
Is there any way to prevent other users from directly accessing the api?