I am attempting to modify the JAX-RS example to add a <security-constraint> tag with authorization constraints, login-config tags, etc. so that I can set up roles and users for the resources.
Generally, this configuration goes into a web.xml. Can I just drop a web.xml into the cxf jaxrs example bundle under WEB-INF/web.xml? Do I need a jetty.xml file to configure a realm.properties file to identify the users and their roles,or can these items be inserted into beans.xml.
Is there an example and/or documentation that describes JAX-RS resource security configuration in general for humble users of FUSE/CXF?