how to integrate angularjs and java jaas based authentication?

Question

I have a webapp which has angularJS on the frontend and Java on the backed. Angular communicates with the java backend via Restful webservices consuming and sending JSON acr

Answer 1

• index.html page should contain token inside html to avoid CSRF
• token shouldn't be stored in a cookie storage
• Each request should be signed with header param
• Server should validate every request by passed header
• If cookie usage is a must you should validate referer in order to prevent CSRF