Servlet authentication and Authorization

• Use of session token, to check identity and access permissions

• use of filter in servlet

• use of encrypted basic auth in header and or url, to check who has specific permissions

-http://www.appuntivari.net/informatica/programmazione/java-j2ee/basic-authentication-in-java-servlet

• https://www.javatpoint.com/authentication-filter

• https://stackoverflow.com/questions/18241008/how-can-i-handle-restrict-user-access-to-servlets-jsps