Hi
If you are interested in starting with the Jwe/Jws/Jwk right now, then
the good news is that Jose4 [1] (the project led by Brian Campbell of
Ping Identity (what a cool company name :-))) module is now available in
Central:
<dependency>
<groupId>org.bitbucket.b_c</groupId>
<artifactId>jose4j</artifactId>
<version>0.3.6</version>
</dependency>
It's a very complete, feature-rich project.
For example, you can write a custom JAX-RS request and response filters
signing or encrypting the payloads, which do not have to JSON payloads,
arbitrary payloads can be taken care of. Or if you do OAuth2 then you
can have a JWT token encrypted with it, all wrapped up in a custom CXF
access token provider.
Note, CXF will offer its own minimalistic Jwe/Jws/Jwk support, it's
still few weeks away I'd say, close enough on the core Jwe/Jws
interfaces though with some optimizations related to the use of it in
JAX-RS.
You don't have to wait though, Jose4J is there, cool and ready to be used
Thanks, Sergey
[1] https://bitbucket.org/b_c/jose4j/wiki/Home
