我已经为我的应用程序实现了 REST Web 服务.由于这不应该是公共服务，我想强制执行某种类型的客户端身份验证.请说明如何做到这一点.

I have implemented rest web services for my application. Since this should not be a public service ,I want to enforce some type of client authentication. Please throw light on how to do that.

仅供参考，我正在使用 apache Tomcat 7 和 MYSQL 数据库

FYI, I am using apache Tomcat 7 and a MYSQL database

推荐答案

你有很多选择 - 从容器管理的安全性(基本或摘要)到 Shiro 或 Spring 安全.

You have a lot of options here - anything from container managed security (basic or digest) to Shiro or Spring Security.