6 Exposing and securing web applications
This chapter covers
- Developing a basic secured web application with HTML
- Creating a more advanced HTMX-based UI
- Propagating the security context for calls between a web application and a REST service
- Exploring other alternatives for frontend development
In this chapter, we focus on two concepts: creating an HTML-based frontend for your application and securing it to require authentication. We already touched security with OIDC and Keycloak a little in chapter 3. We will now apply this concept to the car rental project.
Security, just like testing, is another aspect of software development that is often viewed as a boring but necessary evil and, thus, is often neglected in the early stages of a project. Properly securing an application is generally not an easy task. We will see how Quarkus addresses this and makes security as simple as possible while still providing a high level of flexibility. Changing most security aspects of a Quarkus application is often just a matter of changing a few configuration properties without having to update the code.