Filtering JAX-RS Entities with Standard Security Annotations
By Michal Gajdos-Oracle on Feb 04, 2014
Few times I've ran into a situation in which I wanted to return only a part of entity I was working with, in my service, to the client-side. Feature that would allow me to send this partial set of fields should not only be driven by my own filtering rules but it also should take into consideration application roles the current user is in. It's not an uncommon use-case I'd say so in Jersey we'd come up with the Entity Filtering concept that would allow you to do such a thing: sending subgraph of entities from server to client (and vice versa), define your own filtering rules and make sure users get only the fields they are supposed to see.