Segurança e ajustes nos pacotes

PauloGladson
1 parent 8d68a1f4
Showing 64 changed files with 1417 additions and 1661 deletions Show diff stats
demoiselle-core/src/main/java/org/demoiselle/jee/core/annotation/Strategy.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/annotation/Type.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/annotation/literal/StrategyQualifier.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/annotation/literal/TypeQualifier.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/crud/package-info.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/interfaces/crud/package-info.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/interfaces/persistence/package-info.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/interfaces/security/DemoisellePrincipal.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/interfaces/security/SecurityContext.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/interfaces/security/Token.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/interfaces/security/TokensManager.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/interfaces/ws/package-info.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/message/DemoiselleMessages.java
demoiselle-core/src/main/java/org/demoiselle/jee/core/messages/DemoiselleMessages.java
demoiselle-core/src/main/java/org/demoiselle/jee/stereotype/BusinessController.java
demoiselle-core/src/main/java/org/demoiselle/jee/stereotype/Controller.java
demoiselle-core/src/main/java/org/demoiselle/jee/stereotype/PersistenceController.java
demoiselle-core/src/main/java/org/demoiselle/jee/stereotype/RestController.java
demoiselle-parent/pom.xml
demoiselle-rest/.gitignore
@@ -1,53 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.core.annotation;
-import static java.lang.annotation.ElementType.FIELD;
-import static java.lang.annotation.ElementType.METHOD;
-import static java.lang.annotation.ElementType.PARAMETER;
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import javax.inject.Qualifier;
-
-/**
- *
- * <p>
- * This literal marks a bean to be selected at runtime based on a priority system.
- * The user qualifies the injection point with this literal and then at runtime
- * the CDI engine will circle through all candidate subtypes to be injected
- * that are annotated with {@link Priority}. If there is only one subtype with the
- * highest priority then this one will be selected to be injected.
- * </p>
- *
- * <p>
- * This allows users to plug in libraries with new candidates and have them be selected
- * if their priority values are higher than the default values already present. One example
- * is the {@link org.demoiselle.security.Authorizer} type, the framework has a {@link org.demoiselle.internal.implementation.DefaultAuthorizer}
- * with {@link Priority#L1_PRIORITY the lowest priority} but the user can add libraries with new
- * implementations of {@link org.demoiselle.security.Authorizer} annotated with higher priorities, the code will
- * then automatically select these new implementations with no extra configuration.
- * </p>
- *
- * <p>
- * This annotation must be used with supported types. Usually this involves creating {@link javax.enterprise.inject.Produces} CDI
- * producer methods that will select the correct strategy. To create your own producer
- * methods that support strategy selection, use the utility {@linkplain org.demoiselle.internal.producer.StrategySelector}.
- * </p>
- *
- * @author SERPRO
- */
-@Qualifier
-@Inherited
-@Retention(RUNTIME)
-@Target({ TYPE, FIELD, METHOD, PARAMETER })
-public @interface Strategy {
-
-}
@@ -1,60 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.core.annotation;
-
-import static java.lang.annotation.ElementType.FIELD;
-import static java.lang.annotation.ElementType.METHOD;
-import static java.lang.annotation.ElementType.PARAMETER;
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import javax.enterprise.util.Nonbinding;
-import javax.inject.Qualifier;
-
-/**
- * <p>
- * Type based non-binding qualifier.
- * </p>
- *
- * <p>
- * This annotation is used to qualify beans using a class type.
- * {@link javax.enterprise.inject.Produces} methods can then read this type and
- * use it to customize the bean creation process.
- * </p>
- *
- * <p>
- * The {@link #value()} attribute is non-binding, meaning multiple classes
- * qualified with this annotation, even with different values, will be
- * considered the same candidate for injection points. To avoid ambiguous
- * resolutions and select which candidate to choose usually you'll need a
- * producer method to read the type and select the best fitted candidate.
- * </p>
- *
- * <p>
- * The framework classes qualified with this annotation already have such
- * producers and the accepted values for this annotation will be detailed in
- * their respective documentations.
- * </p>
- *
- *
- * @author SERPRO
- *
- */
-@Qualifier
-@Inherited
-@Retention(RUNTIME)
-@Target({ TYPE, FIELD, METHOD, PARAMETER })
-public @interface Type {
-
-	@Nonbinding
-	Class<?> value() default Object.class;
-
-}
@@ -1,23 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.core.annotation.literal;
-
-import org.demoiselle.jee.core.annotation.Strategy;
-
-import javax.enterprise.util.AnnotationLiteral;
-
-/**
- * Annotation litteral that allows to create instances of the {@link Strategy} literal. The created instance can then be
- * used to call {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}.
- * 
- * @see javax.enterprise.inject.spi.CDI
- * @author SERPRO
- */
-@SuppressWarnings("all")
-public class StrategyQualifier extends AnnotationLiteral<Strategy> implements Strategy {
-
-}
@@ -1,41 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.core.annotation.literal;
-
-import org.demoiselle.jee.core.annotation.Type;
-
-import javax.enterprise.util.AnnotationLiteral;
-
-/**
- * Annotation litteral that allows to create instances of the {@link Type}
- * literal. The created instance can then be used to call
- * {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}.
- *
- * @see javax.enterprise.inject.spi.CDI
- * @author SERPRO
- */
-@SuppressWarnings("all")
-public class TypeQualifier extends AnnotationLiteral<Type> implements Type {
-
-    private static final long serialVersionUID = 1L;
-
-    private final Class<?> value;
-
-    /**
-     * Constructor with string value of name literal.
-     *
-     * @param value value of name literal.
-     */
-    public TypeQualifier(Class<?> value) {
-        this.value = value;
-    }
-
-    @Override
-    public Class<?> value() {
-        return this.value;
-    }
-}
@@ -1,11 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-/**
- * Esta pacote tem o objetivo de conter as classes relacionadas aos
- * facilitadores de CRUD do framework Demoiselle.
- */
-package org.demoiselle.jee.core.crud;
 \ No newline at end of file
@@ -0,0 +1,11 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+/**
+ * Esta pacote tem o objetivo de conter as classes relacionadas aos
+ * facilitadores de CRUD do framework Demoiselle.
+ */
+package org.demoiselle.jee.core.interfaces.crud;
 \ No newline at end of file
@@ -0,0 +1,11 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+/**
+ * Esta pacote tem o objetivo de conter as classes relacionadas aos
+ * facilitadores de CRUD do framework Demoiselle.
+ */
+package org.demoiselle.jee.core.interfaces.persistence;
 \ No newline at end of file
@@ -0,0 +1,29 @@
+/*
+ * To change this license header, choose License Headers in Project Properties.
+ * To change this template file, choose Tools | Templates
+ * and open the template in the editor.
+ */
+package org.demoiselle.jee.core.interfaces.security;
+
+import java.security.Principal;
+import java.util.List;
+import java.util.Map;
+
+/**
+ *
+ * @author 70744416353
+ */
+public interface DemoisellePrincipal extends Principal {
+
+    public String getId();
+
+    public void setId(String id);
+
+    public void setName(String name);
+
+    public void setRoles(List<String> roles);
+
+    public List<String> getRoles();
+
+    public Map<String, String> getPermissions();
+}
@@ -0,0 +1,73 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.core.interfaces.security;
+
+import java.io.Serializable;
+import java.security.Principal;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * <p>
+ * Structure used to handle both authentication and authorizations mechanisms.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public interface SecurityContext extends Serializable {
+
+    /**
+     * Checks if a specific user is logged in.
+     *
+     * @return {@code true} if the user is logged in
+     */
+    boolean isLoggedIn();
+
+    /**
+     * @throws NotLoggedInException if there is no user logged in a specific
+     * session
+     */
+    void checkLoggedIn();
+
+    /**
+     * Checks if the logged user has permission to execute an specific operation
+     * on a specific resource.
+     *
+     * @param resource resource to be checked
+     * @param operation operation to be checked
+     * @return {@code true} if the user has the permission
+     * @throws AuthorizationException When the permission checking fails, this
+     * exception is thrown.
+     * @throws NotLoggedInException if there is no user logged in a specific
+     * session.
+     */
+    boolean hasPermission(String resource, String operation);
+
+    /**
+     * Checks if the logged user has an specific role
+     *
+     * @param role role to be checked
+     * @return {@code true} if the user has the role
+     * @throws AuthorizationException When the permission checking fails, this
+     * exception is thrown.
+     * @throws NotLoggedInException if there is no user logged in a specific
+     * session.
+     */
+    boolean hasRole(String role);
+
+    /**
+     * Return the user logged in the session.
+     *
+     * @param token
+     * @return the user logged in a specific authenticated session. If there is
+     * no active session {@code null} is returned.
+     */
+    Principal getUser();
+
+    void setUser(Principal loggedUser);
+    
+}
@@ -0,0 +1,21 @@
+/*
+ * To change this license header, choose License Headers in Project Properties.
+ * To change this template file, choose Tools | Templates
+ * and open the template in the editor.
+ */
+package org.demoiselle.jee.core.interfaces.security;
+
+/**
+ *
+ * @author 70744416353
+ */
+public interface Token {
+
+    public String getKey();
+
+    public void setKey(String key);
+
+    public String getType();
+
+    public void setType(String type);
+}
@@ -0,0 +1,29 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.core.interfaces.security;
+
+import java.io.Serializable;
+import java.security.Principal;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * <p>
+ * Structure used to handle both authentication and authorizations mechanisms.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public interface TokensManager extends Serializable {
+
+    public Principal getUser();
+
+    public void setUser(Principal user);
+
+    public boolean validate();
+
+}
@@ -0,0 +1,11 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+/**
+ * Esta pacote tem o objetivo de conter as classes relacionadas aos
+ * facilitadores de CRUD do framework Demoiselle.
+ */
+package org.demoiselle.jee.core.interfaces.ws;
 \ No newline at end of file
@@ -0,0 +1,57 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.core.message;
+
+import org.apache.deltaspike.core.api.message.MessageBundle;
+import org.apache.deltaspike.core.api.message.MessageTemplate;
+
+@MessageBundle
+public interface DemoiselleMessages {
+
+	@MessageTemplate("{version}")
+	String version();
+
+	@MessageTemplate("{engine-on}")
+	String engineOn();
+
+	@MessageTemplate("{resource-not-found}")
+	String resourceNotFound();
+
+	@MessageTemplate("{key-not-found}")
+	String keyNotFound(String key);
+
+	@MessageTemplate("{ambiguous-strategy-resolution}")
+	String ambiguousStrategyResolution(String interfaceString, String implementations);
+
+	@MessageTemplate("{ambiguous-bean-resolution}")
+	String ambiguousBeanResolution(String implementation);
+
+	@MessageTemplate("{bean-not-found}")
+	String beanNotFound(String bean);
+
+	@MessageTemplate("{store-not-found}")
+	String storeNotFound(String object, String scope);
+
+	@MessageTemplate("{more-than-one-exceptionhandler-defined-for-same-class}")
+	String moreThanOneExceptionhandlerDefinedForSameClass(String clazz, String ex);
+
+	@MessageTemplate("{handling-exception}")
+	String handlingException(String ex);
+
+	@MessageTemplate("{taking-off}")
+	String takingOff();
+
+	@MessageTemplate("{engine-off}")
+	String engineOff(String ex);
+
+	@MessageTemplate("{setting-up-bean-manager}")
+	String settingUpBeanManagerException(String util);
+
+	@MessageTemplate("{processing-fail}")
+	String processingFail();
+
+}
 \ No newline at end of file
@@ -1,57 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.core.messages;
-
-import org.apache.deltaspike.core.api.message.MessageBundle;
-import org.apache.deltaspike.core.api.message.MessageTemplate;
-
-@MessageBundle
-public interface DemoiselleMessages {
-
-	@MessageTemplate("{version}")
-	String version();
-
-	@MessageTemplate("{engine-on}")
-	String engineOn();
-
-	@MessageTemplate("{resource-not-found}")
-	String resourceNotFound();
-
-	@MessageTemplate("{key-not-found}")
-	String keyNotFound(String key);
-
-	@MessageTemplate("{ambiguous-strategy-resolution}")
-	String ambiguousStrategyResolution(String interfaceString, String implementations);
-
-	@MessageTemplate("{ambiguous-bean-resolution}")
-	String ambiguousBeanResolution(String implementation);
-
-	@MessageTemplate("{bean-not-found}")
-	String beanNotFound(String bean);
-
-	@MessageTemplate("{store-not-found}")
-	String storeNotFound(String object, String scope);
-
-	@MessageTemplate("{more-than-one-exceptionhandler-defined-for-same-class}")
-	String moreThanOneExceptionhandlerDefinedForSameClass(String clazz, String ex);
-
-	@MessageTemplate("{handling-exception}")
-	String handlingException(String ex);
-
-	@MessageTemplate("{taking-off}")
-	String takingOff();
-
-	@MessageTemplate("{engine-off}")
-	String engineOff(String ex);
-
-	@MessageTemplate("{setting-up-bean-manager}")
-	String settingUpBeanManagerException(String util);
-
-	@MessageTemplate("{processing-fail}")
-	String processingFail();
-
-}
 \ No newline at end of file
@@ -1,36 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.stereotype;
-
-import javax.enterprise.inject.Stereotype;
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-/**
- * Identifies a <b>business controller</b> class. Business controller objects typically implement the controller design
- * pattern, i.e., they contain no data elements but methods that orchestrate interaction among business entities.
- * <p>
- * A <i>Business Controller</i> is:
- * <ul>
- * <li>defined when annotated with {@code @BusinessController}</li>
- * <li>automatically injected whenever {@code @Inject} is used</li>
- * </ul>
- * 
- * @author SERPRO
- * @see Controller
- */
-@Controller
-@Stereotype
-@Inherited
-@Target(TYPE)
-@Retention(RUNTIME)
-public @interface BusinessController {
-}
@@ -1,28 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.stereotype;
-
-import javax.interceptor.InterceptorBinding;
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import static java.lang.annotation.ElementType.METHOD;
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-/**
- * Identifies a <b>controller</b> class or stereotype, the latter being most suitable for it.
- * 
- * @author SERPRO
- */
-@InterceptorBinding
-@Inherited
-@Target({ TYPE, METHOD })
-@Retention(RUNTIME)
-public @interface Controller {
-}
@@ -1,37 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.stereotype;
-
-import javax.enterprise.inject.Stereotype;
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-/**
- * Identifies a <b>persistence controller</b> class. A persistence controller is
- * a layer which provides simplified access to data stored in persistent storage
- * of some kind, such as an entity-relational database.
- * <p>
- * A <i>Persitence Controller</i> is:
- * <ul>
- * <li>defined when annotated with {@code @PersistenceController}</li>
- * <li>automatically injected whenever {@code @Inject} is used</li>
- * </ul>
- *
- * @author SERPRO
- * @see Controller
- */
-@Controller
-@Stereotype
-@Inherited
-@Target(TYPE)
-@Retention(RUNTIME)
-public @interface PersistenceController {
-}
@@ -1,36 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.stereotype;
-
-import javax.enterprise.inject.Stereotype;
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-/**
- * Identifies a <b>facade</b> class. A facade is an object that provides a
- * simplified interface to a larger body of code, such as a class library.
- * <p>
- * A <i>Facade</i> is:
- * <ul>
- * <li>defined when annotated with {@code @FacadeController}</li>
- * <li>automatically injected whenever {@code @Inject} is used</li>
- * </ul>
- *
- * @author SERPRO
- * @see Controller
- */
-@Controller
-@Stereotype
-@Inherited
-@Target(TYPE)
-@Retention(RUNTIME)
-public @interface RestController {
-}
 <?xml version="1.0" encoding="UTF-8"?>
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
-
-	<artifactId>demoiselle-parent</artifactId>
-	<packaging>pom</packaging>
-	<modelVersion>4.0.0</modelVersion>
-
-	<name>Demoiselle Parent POM</name>
-
-	<parent>
-		<groupId>org.demoiselle.jee</groupId>
-		<artifactId>demoiselle-build</artifactId>
-		<version>3.0.0-BETA1-SNAPSHOT</version>
-	</parent>
-
-	<properties>
-		<!-- General -->
-		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-
-		<!-- Dependencies versions -->
-		<javaee.version>7.0</javaee.version>
-		<cdi.version>1.2</cdi.version>
-		<validation.version>1.1.0.Final</validation.version>
-		<transaction.version>1.2</transaction.version>
-		<jstl.version>1.2</jstl.version>
-		<el.version>3.0.0</el.version>
-		<servlet.version>3.1.0</servlet.version>
-		<persistence.version>1.0.2</persistence.version>
-		<rest.version>2.0</rest.version>
-		<concurrent.version>1.0</concurrent.version>
-		<hibernate.version>5.1.0.Final</hibernate.version>
-		<hibernate.validator.version>5.2.4.Final</hibernate.validator.version>
-		<commons.configuration.version>2.0</commons.configuration.version>
-		<jaxrs.version>2.0.1</jaxrs.version>
-		<javaee.version>7.0</javaee.version>
-		<deltaspike.version>1.7.1</deltaspike.version>
-		<ejb.version>3.2</ejb.version>
-		<cache.version>1.0.0</cache.version>
-
-		<!-- Maven plugin versions -->
-		<maven.compiler.plugin.version>3.5.1</maven.compiler.plugin.version>
-		<maven.war.plugin.version>2.6</maven.war.plugin.version>
-		<maven.compiler.source>1.8</maven.compiler.source>
-		<maven.compiler.target>1.8</maven.compiler.target>
-
-	</properties>
-
-	<dependencyManagement>
-
-		<dependencies>
-
-			<!-- jsr-299 api -->
-			<dependency>
-				<groupId>javax.enterprise</groupId>
-				<artifactId>cdi-api</artifactId>
-				<scope>provided</scope>
-				<version>${cdi.version}</version>
-			</dependency>
-
-			<!-- jsr-349 api -->
-			<dependency>
-				<artifactId>validation-api</artifactId>
-				<groupId>javax.validation</groupId>
-				<scope>provided</scope>
-				<version>${validation.version}</version>
-			</dependency>
-
-			<!-- jsr-341 api and impl -->
-			<dependency>
-				<groupId>org.glassfish</groupId>
-				<artifactId>javax.el</artifactId>
-				<scope>provided</scope>
-				<version>${el.version}</version>
-			</dependency>
-
-			<!-- jsr-342 api -->
-			<dependency>
-				<groupId>javax</groupId>
-				<artifactId>javaee-api</artifactId>
-				<scope>provided</scope>
-				<version>${javaee.version}</version>
-			</dependency>
-
-			<!-- jsr-340 api -->
-			<dependency>
-				<groupId>javax.servlet</groupId>
-				<artifactId>javax.servlet-api</artifactId>
-				<scope>provided</scope>
-				<version>${servlet.version}</version>
-			</dependency>
-			<dependency>
-				<groupId>javax.servlet</groupId>
-				<artifactId>jstl</artifactId>
-				<scope>provided</scope>
-				<version>${jstl.version}</version>
-			</dependency>
-
-			<!-- jsr-338 api -->
-			<dependency>
-				<groupId>org.hibernate</groupId>
-				<artifactId>hibernate-entitymanager</artifactId>
-				<scope>provided</scope>
-				<version>${hibernate.version}</version>
-			</dependency>
-
-			<!-- jsr-339 api -->
-			<dependency>
-				<groupId>javax.ws.rs</groupId>
-				<artifactId>javax.ws.rs-api</artifactId>
-				<scope>provided</scope>
-				<version>${jaxrs.version}</version>
-			</dependency>
-
-			<!-- jsr-342 api -->
-			<dependency>
-				<groupId>javax</groupId>
-				<artifactId>javaee-web-api</artifactId>
-				<version>${javaee.version}</version>
-			</dependency>
-
-			<!-- jsr-318 api -->
-			<dependency>
-				<groupId>javax.ejb</groupId>
-				<artifactId>javax.ejb-api</artifactId>
-				<version>${ejb.version}</version>
-				<scope>provided</scope>
-			</dependency>
-
-			<!-- jsr-107 api -->
-			<dependency>
-				<groupId>javax.cache</groupId>
-				<artifactId>cache-api</artifactId>
-				<version>${cache.version}</version>
-			</dependency>
-
-			<!-- jsr-107 api -->
-			<dependency>
-				<groupId>javax.persistence</groupId>
-				<artifactId>persistence-api</artifactId>
-				<version>${persistence.version}</version>
-			</dependency>
-
-			<dependency>
-				<groupId>javax.transaction</groupId>
-				<artifactId>javax.transaction-api</artifactId>
-				<version>${transaction.version}</version>
-			</dependency>
-
-			<dependency>
-				<groupId>javax.json</groupId>
-				<artifactId>javax.json-api</artifactId>
-				<version>1.0</version>
-			</dependency>
-
-			<!-- configuration e messages -->
-			<dependency>
-				<groupId>org.apache.deltaspike.core</groupId>
-				<artifactId>deltaspike-core-api</artifactId>
-				<scope>compile</scope>
-				<version>${deltaspike.version}</version>
-			</dependency>
-			<dependency>
-				<groupId>org.apache.deltaspike.core</groupId>
-				<artifactId>deltaspike-core-impl</artifactId>
-				<scope>runtime</scope>
-				<version>${deltaspike.version}</version>
-			</dependency>
-
-			<!-- demoiselle -->
-			<dependency>
-				<groupId>org.demoiselle.jee</groupId>
-				<artifactId>demoiselle-core</artifactId>
-				<version>${project.version}</version>
-			</dependency>
-
-		</dependencies>
-
-	</dependencyManagement>
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+
+    <artifactId>demoiselle-parent</artifactId>
+    <packaging>pom</packaging>
+    <modelVersion>4.0.0</modelVersion>
+
+    <name>Demoiselle Parent POM</name>
+
+    <parent>
+        <groupId>org.demoiselle.jee</groupId>
+        <artifactId>demoiselle-build</artifactId>
+        <version>3.0.0-BETA1-SNAPSHOT</version>
+    </parent>
+
+    <properties>
+        <!-- General -->
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+
+        <!-- Dependencies versions -->
+        <javaee.version>7.0</javaee.version>
+        <cdi.version>1.2</cdi.version>
+        <validation.version>1.1.0.Final</validation.version>
+        <transaction.version>1.2</transaction.version>
+        <jstl.version>1.2</jstl.version>
+        <el.version>3.0.0</el.version>
+        <servlet.version>3.1.0</servlet.version>
+        <persistence.version>1.0.2</persistence.version>
+        <rest.version>2.0</rest.version>
+        <concurrent.version>1.0</concurrent.version>
+        <hibernate.version>5.1.0.Final</hibernate.version>
+        <hibernate.validator.version>5.2.4.Final</hibernate.validator.version>
+        <commons.configuration.version>2.0</commons.configuration.version>
+        <jaxrs.version>2.0.1</jaxrs.version>
+        <javaee.version>7.0</javaee.version>
+        <deltaspike.version>1.7.1</deltaspike.version>
+        <ejb.version>3.2</ejb.version>
+        <cache.version>1.0.0</cache.version>
+
+        <!-- Maven plugin versions -->
+        <maven.compiler.plugin.version>3.5.1</maven.compiler.plugin.version>
+        <maven.war.plugin.version>2.6</maven.war.plugin.version>
+        <maven.compiler.source>1.8</maven.compiler.source>
+        <maven.compiler.target>1.8</maven.compiler.target>
+
+    </properties>
+
+    <dependencyManagement>
+
+        <dependencies>
+
+            <!-- jsr-299 api -->
+            <dependency>
+                <groupId>javax.enterprise</groupId>
+                <artifactId>cdi-api</artifactId>
+                <scope>provided</scope>
+                <version>${cdi.version}</version>
+            </dependency>
+
+            <!-- jsr-349 api -->
+            <dependency>
+                <artifactId>validation-api</artifactId>
+                <groupId>javax.validation</groupId>
+                <scope>provided</scope>
+                <version>${validation.version}</version>
+            </dependency>
+
+            <!-- jsr-341 api and impl -->
+            <dependency>
+                <groupId>org.glassfish</groupId>
+                <artifactId>javax.el</artifactId>
+                <scope>provided</scope>
+                <version>${el.version}</version>
+            </dependency>
+
+            <!-- jsr-342 api -->
+            <dependency>
+                <groupId>javax</groupId>
+                <artifactId>javaee-api</artifactId>
+                <scope>provided</scope>
+                <version>${javaee.version}</version>
+            </dependency>
+
+            <!-- jsr-340 api -->
+            <dependency>
+                <groupId>javax.servlet</groupId>
+                <artifactId>javax.servlet-api</artifactId>
+                <scope>provided</scope>
+                <version>${servlet.version}</version>
+            </dependency>
+            <dependency>
+                <groupId>javax.servlet</groupId>
+                <artifactId>jstl</artifactId>
+                <scope>provided</scope>
+                <version>${jstl.version}</version>
+            </dependency>
+
+            <!-- jsr-338 api -->
+            <dependency>
+                <groupId>org.hibernate</groupId>
+                <artifactId>hibernate-entitymanager</artifactId>
+                <scope>provided</scope>
+                <version>${hibernate.version}</version>
+            </dependency>
+
+            <!-- jsr-339 api -->
+            <dependency>
+                <groupId>javax.ws.rs</groupId>
+                <artifactId>javax.ws.rs-api</artifactId>
+                <scope>provided</scope>
+                <version>${jaxrs.version}</version>
+            </dependency>
+
+            <!-- jsr-342 api -->
+            <dependency>
+                <groupId>javax</groupId>
+                <artifactId>javaee-web-api</artifactId>
+                <version>${javaee.version}</version>
+            </dependency>
+
+            <!-- jsr-318 api -->
+            <dependency>
+                <groupId>javax.ejb</groupId>
+                <artifactId>javax.ejb-api</artifactId>
+                <version>${ejb.version}</version>
+                <scope>provided</scope>
+            </dependency>
+
+            <!-- jsr-107 api -->
+            <dependency>
+                <groupId>javax.cache</groupId>
+                <artifactId>cache-api</artifactId>
+                <version>${cache.version}</version>
+            </dependency>
+
+            <!-- jsr-107 api -->
+            <dependency>
+                <groupId>javax.persistence</groupId>
+                <artifactId>persistence-api</artifactId>
+                <version>${persistence.version}</version>
+            </dependency>
+
+            <dependency>
+                <groupId>javax.transaction</groupId>
+                <artifactId>javax.transaction-api</artifactId>
+                <version>${transaction.version}</version>
+            </dependency>
+
+            <dependency>
+                <groupId>javax.json</groupId>
+                <artifactId>javax.json-api</artifactId>
+                <version>1.0</version>
+            </dependency>
+
+            <!-- configuration e messages -->
+            <dependency>
+                <groupId>org.apache.deltaspike.core</groupId>
+                <artifactId>deltaspike-core-api</artifactId>
+                <scope>compile</scope>
+                <version>${deltaspike.version}</version>
+            </dependency>
+            <dependency>
+                <groupId>org.apache.deltaspike.core</groupId>
+                <artifactId>deltaspike-core-impl</artifactId>
+                <scope>runtime</scope>
+                <version>${deltaspike.version}</version>
+            </dependency>
+
+            <!-- demoiselle -->
+            <dependency>
+                <groupId>org.demoiselle.jee</groupId>
+                <artifactId>demoiselle-core</artifactId>
+                <version>${project.version}</version>
+            </dependency>
+                        
+            <dependency>
+                <groupId>org.demoiselle.jee</groupId>
+                <artifactId>demoiselle-security</artifactId>
+                <version>${project.version}</version>
+            </dependency>
+
+        </dependencies>
+
+    </dependencyManagement>
 </project>
@@ -0,0 +1,5 @@
+.settings
+.classpath
+.project
+/target/
+/bin/
@@ -0,0 +1,37 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>demoiselle-rest</artifactId>
+    <packaging>jar</packaging>
+    
+    <name>Demoiselle Rest</name>
+    <description>
+        Demoiselle Rest
+    </description>
+	
+    <parent>
+        <groupId>org.demoiselle.jee</groupId>
+        <artifactId>demoiselle-parent</artifactId>		
+        <version>3.0.0-BETA1-SNAPSHOT</version>
+        <relativePath>../demoiselle-parent</relativePath>
+    </parent>		
+	
+    <dependencies>
+        
+        <dependency>
+            <groupId>org.demoiselle.jee</groupId>
+            <artifactId>demoiselle-core</artifactId>
+        </dependency>
+
+        <dependency>
+            <groupId>javax.ws.rs</groupId>
+            <artifactId>javax.ws.rs-api</artifactId>
+        </dependency>
+        
+        <dependency>
+            <groupId>javax.json</groupId>
+            <artifactId>javax.json-api</artifactId>
+        </dependency>
+        
+    </dependencies>
+</project>
@@ -0,0 +1,59 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.ws.jaxrs;
+
+import java.util.logging.Logger;
+import javax.annotation.PostConstruct;
+import javax.inject.Inject;
+import javax.ws.rs.client.ClientRequestContext;
+import javax.ws.rs.client.ClientRequestFilter;
+import javax.ws.rs.client.ClientResponseContext;
+import javax.ws.rs.client.ClientResponseFilter;
+import javax.ws.rs.container.ContainerRequestContext;
+import javax.ws.rs.container.ContainerRequestFilter;
+import javax.ws.rs.container.ContainerResponseContext;
+import javax.ws.rs.container.ContainerResponseFilter;
+import javax.ws.rs.container.PreMatching;
+import javax.ws.rs.ext.Provider;
+
+/**
+ *
+ * @author 70744416353
+ */
+@Provider
+@PreMatching
+public class JaxRsFilter implements ClientRequestFilter, ClientResponseFilter, ContainerRequestFilter, ContainerResponseFilter {
+
+    @Inject
+    private Logger LOG;
+
+    @Override
+    public void filter(ClientRequestContext requestContext) {
+    }
+
+    @Override
+    public void filter(ClientRequestContext requestContext, ClientResponseContext responseContext) {
+    }
+
+    @Override
+    public void filter(ContainerRequestContext requestContext) {
+    }
+
+    @Override
+    public void filter(ContainerRequestContext requestContext, ContainerResponseContext response) {
+        response.getHeaders().putSingle("Demoiselle", "3.0.0");
+        response.getHeaders().putSingle("Access-Control-Allow-Origin", "*");
+        response.getHeaders().putSingle("Access-Control-Allow-Methods", "OPTIONS, GET, POST, PUT, DELETE");
+        response.getHeaders().putSingle("Access-Control-Allow-Headers", "Content-Type");
+    }
+
+    @PostConstruct
+    public void init() {
+        LOG.info("Demoiselle Module - Rest");
+    }
+
+}
@@ -0,0 +1,11 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+/**
+ * Esta pacote tem o objetivo de conter as classes relacionadas aos
+ * facilitadores de CRUD do framework Demoiselle.
+ */
+package org.demoiselle.jee.ws.jaxrs.crud;
 \ No newline at end of file
@@ -0,0 +1,41 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.ws.jaxrs.exception;
+
+import java.util.HashMap;
+
+import org.demoiselle.jee.core.exception.DemoiselleException;
+
+public class DemoiselleRESTException extends DemoiselleException {
+
+	private static final long serialVersionUID = 519965615171844237L;
+
+	private HashMap<String, String> messages = new HashMap<String, String>();
+
+	private int statusCode;
+
+	public DemoiselleRESTException() {
+
+	}
+	
+	public DemoiselleRESTException(String string) {
+		super(string);
+	}
+
+	public int getStatusCode() {
+		return statusCode;
+	}
+
+	public void addMessage(String field, String msg) {
+		this.statusCode = 422;
+		messages.put(field, msg);
+	}
+
+	public HashMap<String, String> getMessages() {
+		return messages;
+	}
+}
@@ -0,0 +1,68 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.ws.jaxrs.exception.mapper;
+
+import java.io.PrintWriter;
+import java.io.StringWriter;
+import java.util.HashMap;
+
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.ext.ExceptionMapper;
+import javax.ws.rs.ext.Provider;
+
+import org.demoiselle.jee.ws.jaxrs.exception.DemoiselleRESTException;
+
+@Provider
+public class GenericExceptionMapper implements ExceptionMapper<Exception> {
+
+	public Response toResponse(Exception ex) {
+
+		StringWriter errorStackTrace = new StringWriter();
+		ex.printStackTrace(new PrintWriter(errorStackTrace));
+
+		// Verifica se a exception é de validação de PAYLOAD do REST
+		if (ex.getCause() instanceof DemoiselleRESTException) {
+			DemoiselleRESTException exDemoiselleREST = (DemoiselleRESTException) ex.getCause();
+			if (!exDemoiselleREST.getMessages().isEmpty()) {
+				return Response.status(exDemoiselleREST.getStatusCode()).entity(exDemoiselleREST.getMessages())
+						.type(MediaType.APPLICATION_JSON).build();
+			}
+		}
+
+		HashMap<String, String> entity = new HashMap<String, String>();
+
+		// No caso de existir message ele mostra a MESSAGE da Exception
+		if (ex.getMessage() != null) {
+			entity.put("error", ex.getMessage());			
+
+			// Pega toda as mensagens da stacktrace
+			int level = 1;
+			while (ex.getCause() != null) {
+				ex = (Exception) ex.getCause();
+				if (!ex.getMessage().isEmpty()) {
+					entity.put("inner_cause_" + level, ex.getMessage());
+				}
+				level += 1;
+			}
+			
+			// Por padrão retorna SERVER ERROR, mas tenta encontrar o status do RESPONSE se for WebApplicationException
+			// http://docs.oracle.com/javaee/7/api/javax/ws/rs/WebApplicationException.html
+			int responseCode = Response.Status.INTERNAL_SERVER_ERROR.getStatusCode();
+			if (ex instanceof WebApplicationException) {
+				responseCode = ((WebApplicationException)ex).getResponse().getStatus();
+			}
+
+			return Response.status(responseCode).entity(entity).type(MediaType.APPLICATION_JSON).build();
+		}
+
+		entity.put("error", "Erro interno desconhecido no servidor.");
+		return Response.status(500).entity(entity).type(MediaType.APPLICATION_JSON).build();
+	}
+
+}
@@ -0,0 +1,25 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.ws.jaxrs.interceptor;
+
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.ElementType.TYPE;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+import java.lang.annotation.Inherited;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import javax.interceptor.InterceptorBinding;
+
+@Inherited
+@InterceptorBinding
+@Target({ METHOD, TYPE })
+@Retention(RUNTIME)
+public @interface ValidatePayload {
+
+}
 \ No newline at end of file
@@ -0,0 +1,62 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.ws.jaxrs.interceptor;
+
+import java.io.Serializable;
+import java.util.HashSet;
+import java.util.Set;
+
+import javax.interceptor.AroundInvoke;
+import javax.interceptor.Interceptor;
+import javax.interceptor.InvocationContext;
+import javax.validation.ConstraintViolation;
+import javax.validation.UnexpectedTypeException;
+import javax.validation.Validation;
+import javax.validation.Validator;
+import javax.validation.ValidatorFactory;
+
+import org.demoiselle.jee.ws.jaxrs.exception.DemoiselleRESTException;
+
+@Interceptor
+@ValidatePayload
+public class ValidatePayloadInterceptor implements Serializable {
+
+	private static final long serialVersionUID = 1L;
+
+	@AroundInvoke
+	public Object manage(final InvocationContext ic) throws Exception {
+		DemoiselleRESTException ex = new DemoiselleRESTException();
+		Set<ConstraintViolation<?>> violations = new HashSet<ConstraintViolation<?>>();
+		for (Object params : ic.getParameters()) {
+			if (params != null) {
+				ValidatorFactory dfv = Validation.buildDefaultValidatorFactory();
+				Validator validator = dfv.getValidator();
+				try {
+					violations.addAll(validator.validate(params));
+					for (ConstraintViolation<?> violation : violations) {
+						String field = (violation.getRootBeanClass().getSimpleName() + "_"
+								+ violation.getPropertyPath()).toLowerCase();
+						// GPMessage msg =
+						// GPMessage.INVALID_FIELD_P1.setSufix(violation.getConstraintDescriptor()
+						// .getAnnotation().annotationType().getSimpleName().toLowerCase());
+
+						ex.addMessage(field, violation.getMessage());
+					}
+				} catch (UnexpectedTypeException cause) {
+					// GPMessage msg = GPMessage.GENERAL_ERROR_P1;
+					// msg.setParam(cause.getMessage());
+					throw new DemoiselleRESTException("ERRO GENERICO -> ALTERAR");
+				}
+			}
+		}
+
+		if (!violations.isEmpty() && !ex.getMessages().isEmpty()) {
+			throw ex;
+		}
+		return ic.proceed();
+	}
+}
 \ No newline at end of file
 <?xml version="1.0" encoding="UTF-8"?>
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
     <modelVersion>4.0.0</modelVersion>
-    <groupId>org.demoiselle.jee</groupId>
     <artifactId>demoiselle-security-basic</artifactId>
-    <version>3.0.0-SNAPSHOT</version>
     <packaging>jar</packaging>
-    <properties>
-        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-        <maven.compiler.source>1.8</maven.compiler.source>
-        <maven.compiler.target>1.8</maven.compiler.target>
-    </properties>
+    
+    <name>Demoiselle Security Basic</name>
+    <description>
+        Demoiselle Security Basic
+    </description>
+	
+    <parent>
+        <groupId>org.demoiselle.jee</groupId>
+        <artifactId>demoiselle-parent</artifactId>		
+        <version>3.0.0-BETA1-SNAPSHOT</version>
+        <relativePath>../demoiselle-parent</relativePath>
+    </parent>		
+	
     <dependencies>
         <dependency>
-            <groupId>${project.groupId}</groupId>
-            <artifactId>demoiselle-core</artifactId>
-            <version>${project.version}</version>
-        </dependency>
-        
-        <dependency>
-            <groupId>${project.groupId}</groupId>
-            <artifactId>demoiselle-ws-jaxrs</artifactId>
-            <version>${project.version}</version>
-        </dependency>
-
-        <dependency>
-            <groupId>${project.groupId}</groupId>
+            <groupId>org.demoiselle.jee</groupId>
             <artifactId>demoiselle-security</artifactId>
-            <version>${project.version}</version>
         </dependency>
     </dependencies>
@@ -6,14 +6,17 @@
 package org.demoiselle.jee.security.basic.impl;
 import java.security.Principal;
+import java.util.List;
 import java.util.Map;
 import java.util.UUID;
 import java.util.concurrent.ConcurrentHashMap;
 import java.util.logging.Logger;
 import javax.enterprise.context.Dependent;
+import javax.enterprise.context.RequestScoped;
 import javax.inject.Inject;
-import org.demoiselle.jee.security.Token;
-import org.demoiselle.jee.security.interfaces.TokensManager;
+import org.demoiselle.jee.core.interfaces.security.DemoisellePrincipal;
+import org.demoiselle.jee.core.interfaces.security.Token;
+import org.demoiselle.jee.core.interfaces.security.TokensManager;
 /**
  *
@@ -27,25 +30,41 @@ public class TokensManagerImpl implements TokensManager {
     @Inject
     private Logger logger;
+    @Inject
+    @RequestScoped
+    private Token token;
+
+    @Inject
+    @RequestScoped
+    private Principal loggedUser;
+
     @Override
-    public Principal getUser(Token token) {
-        return repo.get(token.getKey());
+    public Principal getUser() {
+        if (loggedUser == null) {
+            if (token.getKey() != null && !token.getKey().isEmpty()) {
+                loggedUser = repo.get(token.getKey());
+                return loggedUser;
+            }
+        }
+        return loggedUser;
     }
     @Override
-    public Token getToken(Principal user) {
+    public void setUser(Principal user) {
         String value = null;
         if (!repo.containsValue(user)) {
             value = UUID.randomUUID().toString();
             repo.put(value, user);
-        } else {
-            for (Map.Entry<String, Principal> entry : repo.entrySet()) {
-                if (entry.getValue().equals(user)) {
-                    return entry.getKey();
-                }
-            }
+            token.setKey(value);
+            token.setType("Basic");
         }
-        return value;
     }
+    @Override
+    public boolean validate() {
+        return true;//(getUser() != null && repo.get(token.getKey()).);
+    }
+
+
+
 }
 <?xml version="1.0" encoding="UTF-8"?>
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
     <modelVersion>4.0.0</modelVersion>
-    <groupId>org.demoiselle.jee</groupId>
     <artifactId>demoiselle-security-jwt</artifactId>
-    <version>3.0.0-SNAPSHOT</version>
     <packaging>jar</packaging>
-    <properties>
-        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-        <maven.compiler.source>1.8</maven.compiler.source>
-        <maven.compiler.target>1.8</maven.compiler.target>
-    </properties>
+    
+    <name>Demoiselle Security JWT</name>
+    <description>
+        Demoiselle Security JWT
+    </description>
+	
+    <parent>
+        <groupId>org.demoiselle.jee</groupId>
+        <artifactId>demoiselle-parent</artifactId>		
+        <version>3.0.0-BETA1-SNAPSHOT</version>
+        <relativePath>../demoiselle-parent</relativePath>
+    </parent>		
+	
     <dependencies>
         <dependency>
-            <groupId>${project.groupId}</groupId>
-            <artifactId>demoiselle-core</artifactId>
-            <version>${project.version}</version>
-        </dependency>        
-
-        <dependency>
-            <groupId>${project.groupId}</groupId>
+            <groupId>org.demoiselle.jee</groupId>
             <artifactId>demoiselle-security</artifactId>
-            <version>${project.version}</version>
         </dependency>
-
+        
         <dependency>
             <groupId>org.bitbucket.b_c</groupId>
             <artifactId>jose4j</artifactId>
@@ -36,6 +35,6 @@
             <version>2.2.2</version>
             <scope>compile</scope>
         </dependency>
-
+        
     </dependencies>
 </project>
@@ -13,7 +13,8 @@ import java.util.logging.Logger;
 import javax.enterprise.context.Dependent;
 import javax.inject.Inject;
 import javax.servlet.http.HttpServletRequest;
-import org.demoiselle.jee.security.interfaces.TokensManager;
+import org.demoiselle.jee.core.security.LoggedUser;
+import org.demoiselle.jee.core.security.TokensManager;
 import org.jose4j.jwk.RsaJsonWebKey;
 import org.jose4j.jwk.RsaJwkGenerator;
 import org.jose4j.jws.AlgorithmIdentifiers;
@@ -49,8 +50,8 @@ public class TokensManagerImpl implements TokensManager {
     }
     @Override
-    public Principal getUser(String jwt) {
-        Principal usuario = null;
+    public LoggedUser getUser(String jwt) {
+        LoggedUser usuario = null;
         if (jwt != null && !jwt.isEmpty()) {
             JwtConsumer jwtConsumer = new JwtConsumerBuilder()
                     .setRequireExpirationTime() // the JWT must have an expiration time
@@ -62,7 +63,7 @@ public class TokensManagerImpl implements TokensManager {
             try {
                 JwtClaims jwtClaims = jwtConsumer.processToClaims(jwt);
-                usuario = new Gson().fromJson((String) jwtClaims.getClaimValue("user"), Principal.class);
+                usuario = new Gson().fromJson((String) jwtClaims.getClaimValue("user"), LoggedUser.class);
                 String ip = httpRequest.getRemoteAddr();
                 if (!ip.equalsIgnoreCase((String) jwtClaims.getClaimValue("ip"))) {
@@ -76,7 +77,7 @@ public class TokensManagerImpl implements TokensManager {
     }
     @Override
-    public String getToken(Principal user) {
+    public String setUser(LoggedUser user) {
         try {
             JwtClaims claims = new JwtClaims();
             claims.setIssuer("demoiselle");
@@ -0,0 +1,5 @@
+.settings
+.classpath
+.project
+/target/
+/bin/
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>demoiselle-security-token</artifactId>
+    <packaging>jar</packaging>
+    
+    <name>Demoiselle Security Token</name>
+    <description>
+        Demoiselle Security Token
+    </description>
+	
+    <parent>
+        <groupId>org.demoiselle.jee</groupId>
+        <artifactId>demoiselle-parent</artifactId>		
+        <version>3.0.0-BETA1-SNAPSHOT</version>
+        <relativePath>../demoiselle-parent</relativePath>
+    </parent>		
+	
+    <dependencies>
+        
+        <dependency>
+            <groupId>org.demoiselle.jee</groupId>
+            <artifactId>demoiselle-security</artifactId>
+        </dependency>
+
+    </dependencies>
+</project>
@@ -0,0 +1,90 @@
+/*
+ * To change this license header, choose License Headers in Project Properties.
+ * To change this template file, choose Tools | Templates
+ * and open the template in the editor.
+ */
+package org.demoiselle.jee.security.basic.impl;
+
+import java.security.Principal;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+import java.util.concurrent.ConcurrentHashMap;
+import java.util.logging.Logger;
+import javax.enterprise.context.Dependent;
+import javax.enterprise.context.RequestScoped;
+import javax.inject.Inject;
+import org.demoiselle.jee.core.interfaces.security.Token;
+import org.demoiselle.jee.core.interfaces.security.TokensManager;
+
+/**
+ *
+ * @author 70744416353
+ */
+@Dependent
+public class TokensManagerImpl implements TokensManager {
+
+    private static ConcurrentHashMap<String, Principal> repo = new ConcurrentHashMap<>();
+
+    @Inject
+    private Logger logger;
+
+    @Inject
+    @RequestScoped
+    private Token token;
+
+    @Inject
+    @RequestScoped
+    private Principal loggedUser;
+
+    @Override
+    public Principal getUser() {
+        if (loggedUser == null) {
+            if (token.getKey() != null && !token.getKey().isEmpty()) {
+                loggedUser = repo.get(token.getKey());
+                return loggedUser;
+            }
+        }
+        return loggedUser;
+    }
+
+    @Override
+    public void setUser(Principal user) {
+        String value = null;
+        if (!repo.containsValue(user)) {
+            value = UUID.randomUUID().toString();
+            repo.put(value, user);
+            token.setKey(value);
+            token.setType("Basic");
+        }
+    }
+
+    @Override
+    public boolean validate() {
+        return true;//(getUser() != null && repo.get(token.getKey()).);
+    }
+
+    @Override
+    public Token getToken() {
+        return token;
+    }
+
+    @Override
+    public void setToken(Token token) {
+        String key = null;
+        if (repo.containsKey(token.getKey())) {
+            loggedUser = repo.get(key);
+        }
+    }
+
+    @Override
+    public void setRoles(List<String> roles) {
+        
+    }
+
+    @Override
+    public void setPermissions(Map<String, String> permissions) {
+        
+    }
+
+}
@@ -0,0 +1 @@
+user-not-authenticated
 \ No newline at end of file
@@ -0,0 +1 @@
+tipo-seguranca=basic
 \ No newline at end of file
 <?xml version="1.0" encoding="UTF-8"?>
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
-	<modelVersion>4.0.0</modelVersion>
-	<artifactId>demoiselle-security</artifactId>
-	<packaging>jar</packaging>
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>demoiselle-security</artifactId>
+    <packaging>jar</packaging>
-	<name>Demoiselle Security</name>
-	<description>
-		Demoiselle Security
-	</description>
+    <name>Demoiselle Security</name>
+    <description>
+        Demoiselle Security
+    </description>
-	<parent>
-		<groupId>org.demoiselle.jee</groupId>
-		<artifactId>demoiselle-parent</artifactId>
-		<version>3.0.0-BETA1-SNAPSHOT</version>
-		<relativePath>../demoiselle-parent</relativePath>
-	</parent>	
+    <parent>
+        <groupId>org.demoiselle.jee</groupId>
+        <artifactId>demoiselle-parent</artifactId>
+        <version>3.0.0-BETA1-SNAPSHOT</version>
+        <relativePath>../demoiselle-parent</relativePath>
+    </parent>	
-	<dependencies>
+    <dependencies>
-		<dependency>
-			<groupId>org.demoiselle.jee</groupId>
-			<artifactId>demoiselle-core</artifactId>
-		</dependency>
+        <dependency>
+            <groupId>org.demoiselle.jee</groupId>
+            <artifactId>demoiselle-core</artifactId>
+        </dependency>
-	</dependencies>
+    </dependencies>
 </project>
@@ -1,76 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security;
-
-import java.io.IOException;
-import org.demoiselle.jee.security.interfaces.SecurityContext;
-import java.util.logging.Logger;
-import javax.annotation.PostConstruct;
-import javax.inject.Inject;
-import javax.ws.rs.client.ClientRequestContext;
-import javax.ws.rs.client.ClientRequestFilter;
-import javax.ws.rs.client.ClientResponseContext;
-import javax.ws.rs.client.ClientResponseFilter;
-import javax.ws.rs.container.ContainerRequestContext;
-import javax.ws.rs.container.ContainerRequestFilter;
-import javax.ws.rs.container.ContainerResponseContext;
-import javax.ws.rs.container.ContainerResponseFilter;
-import javax.ws.rs.container.PreMatching;
-import javax.ws.rs.ext.Provider;
-
-/**
- *
- * @author 70744416353
- */
-@Provider
-@PreMatching
-public class JaxRsFilter implements ClientRequestFilter, ClientResponseFilter, ContainerRequestFilter, ContainerResponseFilter {
-
-    @Inject
-    private Logger LOG;
-
-    @Inject
-    private SecurityContext securityContext;
-
-    @PostConstruct
-    public void init() {
-        LOG.info("Demoiselle Module - Security");
-    }
-
-    @Override
-    public void filter(ContainerRequestContext requestContext, ContainerResponseContext responseContext) {
-        responseContext.getHeaders().putSingle("Authorization", "enabled");
-        responseContext.getHeaders().putSingle("x-content-type-options", "nosniff");
-        responseContext.getHeaders().putSingle("x-frame-options", "SAMEORIGIN");
-        responseContext.getHeaders().putSingle("x-xss-protection", "1; mode=block");
-    }
-
-    @Override
-    public void filter(ContainerRequestContext requestContext) throws IOException {
-        try {
-            if (requestContext.getHeaders().containsKey("Authorization")) {
-                String token = requestContext.getHeaders().get("Authorization").toString().replace("[", "").replace("]", "");
-                if (!token.isEmpty()) {
-                    securityContext.setToken(token);
-                }
-            }
-        } catch (Exception e) {
-        }
-
-    }
-
-    @Override
-    public void filter(ClientRequestContext requestContext) throws IOException {
-
-    }
-
-    @Override
-    public void filter(ClientRequestContext requestContext, ClientResponseContext responseContext) throws IOException {
-
-    }
-
-}
@@ -1,67 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security;
-
-import java.util.List;
-import java.util.Map;
-
-import javax.enterprise.context.RequestScoped;
-
-/**
- *
- * @author 70744416353
- */
-@RequestScoped
-public class LoggedUser {
-
-    private String id;
-    private String username;
-    private String email;
-    private Map<String, String> premissions;
-    private List<String> roles;
-
-    public String getId() {
-        return id;
-    }
-
-    public void setId(String id) {
-        this.id = id;
-    }
-
-    public String getUsername() {
-        return username;
-    }
-
-    public void setUsername(String username) {
-        this.username = username;
-    }
-
-    public String getEmail() {
-        return email;
-    }
-
-    public void setEmail(String email) {
-        this.email = email;
-    }
-
-    public Map<String, String> getPremissions() {
-        return premissions;
-    }
-
-    public void setPremissions(Map<String, String> premissions) {
-        this.premissions = premissions;
-    }
-
-    public List<String> getRoles() {
-        return roles;
-    }
-
-    public void setRoles(List<String> roles) {
-        this.roles = roles;
-    }
-
-}
@@ -1,28 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security;
-
-import javax.enterprise.context.RequestScoped;
-
-/**
- *
- * @author 70744416353
- */
-@RequestScoped
-public class Token {
-
-    private String key;
-
-    public String getKey() {
-        return key;
-    }
-
-    public void setKey(String key) {
-        this.key = key;
-    }
-
-}
@@ -0,0 +1,31 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.security.annotation;
+
+import javax.interceptor.InterceptorBinding;
+import java.lang.annotation.Inherited;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.ElementType.TYPE;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+/**
+ * <p>
+ * Indicates that a specific permission is required in order to invocate the annotated method or class.
+ * </p>
+ *
+ * @author SERPRO
+ */
+
+@Inherited
+@InterceptorBinding
+@Target({ METHOD, TYPE })
+@Retention(RUNTIME)
+public @interface LoggedIn {
+}
@@ -0,0 +1,35 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.security.annotation;
+
+import javax.enterprise.util.Nonbinding;
+import javax.interceptor.InterceptorBinding;
+import java.lang.annotation.Inherited;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.ElementType.TYPE;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+/**
+ * Indicates that a specific permission is required in order to invocate the annotated method or class.
+ * 
+ * @author SERPRO
+ */
+@Inherited
+@InterceptorBinding
+@Target({ METHOD, TYPE })
+@Retention(RUNTIME)
+public @interface RequiredPermission {
+
+	@Nonbinding
+	String resource() default "";
+
+	@Nonbinding
+	String operation() default "";
+}
@@ -0,0 +1,35 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.security.annotation;
+
+import javax.enterprise.util.Nonbinding;
+import javax.interceptor.InterceptorBinding;
+import java.lang.annotation.Inherited;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.ElementType.TYPE;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+/**
+ * <p>
+ * Indicates that the annotated method or class requires the user to have one or more roles associated in order to be
+ * invocated.
+ * </p>
+ *
+ * @author SERPRO
+ */
+@Inherited
+@InterceptorBinding
+@Target({ METHOD, TYPE })
+@Retention(RUNTIME)
+public @interface RequiredRole {
+
+	@Nonbinding
+	String[] value();
+}
@@ -1,31 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security.annotations;
-
-import javax.interceptor.InterceptorBinding;
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import static java.lang.annotation.ElementType.METHOD;
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-/**
- * <p>
- * Indicates that a specific permission is required in order to invocate the annotated method or class.
- * </p>
- *
- * @author SERPRO
- */
-
-@Inherited
-@InterceptorBinding
-@Target({ METHOD, TYPE })
-@Retention(RUNTIME)
-public @interface LoggedIn {
-}
@@ -1,35 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security.annotations;
-
-import javax.enterprise.util.Nonbinding;
-import javax.interceptor.InterceptorBinding;
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import static java.lang.annotation.ElementType.METHOD;
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-/**
- * Indicates that a specific permission is required in order to invocate the annotated method or class.
- * 
- * @author SERPRO
- */
-@Inherited
-@InterceptorBinding
-@Target({ METHOD, TYPE })
-@Retention(RUNTIME)
-public @interface RequiredPermission {
-
-	@Nonbinding
-	String resource() default "";
-
-	@Nonbinding
-	String operation() default "";
-}
@@ -1,35 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security.annotations;
-
-import javax.enterprise.util.Nonbinding;
-import javax.interceptor.InterceptorBinding;
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import static java.lang.annotation.ElementType.METHOD;
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-/**
- * <p>
- * Indicates that the annotated method or class requires the user to have one or more roles associated in order to be
- * invocated.
- * </p>
- *
- * @author SERPRO
- */
-@Inherited
-@InterceptorBinding
-@Target({ METHOD, TYPE })
-@Retention(RUNTIME)
-public @interface RequiredRole {
-
-	@Nonbinding
-	String[] value();
-}
@@ -0,0 +1,79 @@
+/*
+ * Demoiselle Framework
+ *
+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
+ */
+package org.demoiselle.jee.security.filter;
+
+import java.io.IOException;
+import java.util.logging.Logger;
+import javax.annotation.PostConstruct;
+import javax.inject.Inject;
+import javax.ws.rs.client.ClientRequestContext;
+import javax.ws.rs.client.ClientRequestFilter;
+import javax.ws.rs.client.ClientResponseContext;
+import javax.ws.rs.client.ClientResponseFilter;
+import javax.ws.rs.container.ContainerRequestContext;
+import javax.ws.rs.container.ContainerRequestFilter;
+import javax.ws.rs.container.ContainerResponseContext;
+import javax.ws.rs.container.ContainerResponseFilter;
+import javax.ws.rs.container.PreMatching;
+import javax.ws.rs.ext.Provider;
+import org.demoiselle.jee.core.interfaces.security.SecurityContext;
+import org.demoiselle.jee.core.interfaces.security.Token;
+
+/**
+ *
+ * @author 70744416353
+ */
+@Provider
+@PreMatching
+public class JaxRsFilter implements ClientRequestFilter, ClientResponseFilter, ContainerRequestFilter, ContainerResponseFilter {
+
+    @Inject
+    private Logger LOG;
+
+    @Inject
+    private Token token;
+
+    @PostConstruct
+    public void init() {
+        LOG.info("Demoiselle Module - Security");
+    }
+
+    @Override
+    public void filter(ContainerRequestContext requestContext, ContainerResponseContext responseContext) {
+        responseContext.getHeaders().putSingle("Authorization", "enabled");
+        responseContext.getHeaders().putSingle("x-content-type-options", "nosniff");
+        responseContext.getHeaders().putSingle("x-frame-options", "SAMEORIGIN");
+        responseContext.getHeaders().putSingle("x-xss-protection", "1; mode=block");
+    }
+
+    @Override
+    public void filter(ContainerRequestContext requestContext) throws IOException {
+        try {
+            if (requestContext.getHeaders().containsKey("Authorization")) {
+                String chave = requestContext.getHeaders().get("Authorization").toString().replace("[", "").replace("]", "");
+                if (!chave.isEmpty()) {
+                    token.setType(chave.split(" ")[0]);
+                    token.setKey(chave.split(" ")[1]);
+                }
+            }
+        } catch (Exception e) {
+            LOG.fine(e.getMessage());
+        }
+
+    }
+
+    @Override
+    public void filter(ClientRequestContext requestContext) throws IOException {
+
+    }
+
+    @Override
+    public void filter(ClientRequestContext requestContext, ClientResponseContext responseContext) throws IOException {
+
+    }
+
+}
@@ -7,18 +7,17 @@
 package org.demoiselle.jee.security.impl;
 import java.security.Principal;
+import java.util.List;
 import java.util.Map;
-import java.util.Set;
-
 import javax.enterprise.context.Dependent;
 import javax.inject.Inject;
 import org.demoiselle.jee.core.util.ResourceBundle;
-import org.demoiselle.jee.security.LoggedUser;
-import org.demoiselle.jee.security.Token;
+
 import org.demoiselle.jee.security.exception.NotLoggedInException;
-import org.demoiselle.jee.security.interfaces.SecurityContext;
-import org.demoiselle.jee.security.interfaces.TokensManager;
+import org.demoiselle.jee.core.interfaces.security.SecurityContext;
+import org.demoiselle.jee.core.interfaces.security.Token;
+import org.demoiselle.jee.core.interfaces.security.TokensManager;
 /**
  * <p>
@@ -36,12 +35,6 @@ public class SecurityContextImpl implements SecurityContext {
     private TokensManager tm;
     @Inject
-    private Token token;
-
-    @Inject
-    private LoggedUser loggedUser;
-
-    @Inject
     private ResourceBundle bundle;
     /**
@@ -70,20 +63,10 @@ public class SecurityContextImpl implements SecurityContext {
      */
     @Override
     public boolean isLoggedIn() {
-        return getUser() != null;
+        return tm.validate();
     }
-    /**
-     * @see org.demoiselle.security.SecurityContext#getUser()
-     */
     @Override
-    public Principal getUser() {
-//        if (token.getKey() != null && !token.getKey().isEmpty()) {
-//            return tm.getUser(token.getKey());
-//        }
-        return null;//token.getPrincipal();
-    }
-
     public void checkLoggedIn() throws NotLoggedInException {
         if (!isLoggedIn()) {
             throw new NotLoggedInException(bundle.getString("user-not-authenticated"));
@@ -91,46 +74,13 @@ public class SecurityContextImpl implements SecurityContext {
     }
     @Override
-    public void setRoles(Set<String> roles) {
-        throw new UnsupportedOperationException("Not supported yet."); //To change body of generated methods, choose Tools | Templates.
-    }
-
-    @Override
-    public void setPermission(Map<String, String> permissions) {
-        throw new UnsupportedOperationException("Not supported yet."); //To change body of generated methods, choose Tools | Templates.
-    }
-
-    @Override
-    public Set<String> getResources(String operation) {
-        throw new UnsupportedOperationException("Not supported yet."); //To change body of generated methods, choose Tools | Templates.
-    }
-
-    @Override
-    public Set<String> getOperations(String resources) {
-        throw new UnsupportedOperationException("Not supported yet."); //To change body of generated methods, choose Tools | Templates.
-    }
-
-    @Override
-    public void setUser(Principal principal) {
-//        token.setKey(tm.getToken(principal));
-//        token.setPrincipal(principal);
-    }
-
-    @Override
-    public String getToken() {
-//        if (token.getKey() != null && token.getKey().isEmpty()) {
-//            token.setKey(tm.getToken(token.getPrincipal()));
-//        }
-        return token.getKey();
+    public Principal getUser() {
+        return tm.getUser();
     }
     @Override
-    public void setToken(String chave) {
-//        token.setPrincipal(tm.getUser(chave));
-//        if (token.getPrincipal() == null) {
-//            throw new NotLoggedInException(bundle.getString("user-not-authenticated"));
-//        }
-        token.setKey(chave);
+    public void setUser(Principal loggedUser) {
+        tm.setUser(loggedUser);
     }
 }
@@ -0,0 +1,41 @@
+/*
+ * To change this license header, choose License Headers in Project Properties.
+ * To change this template file, choose Tools | Templates
+ * and open the template in the editor.
+ */
+package org.demoiselle.jee.security.impl;
+
+import javax.enterprise.context.Dependent;
+import org.demoiselle.jee.core.interfaces.security.Token;
+
+/**
+ *
+ * @author 70744416353
+ */
+@Dependent
+public class TokenImpl implements Token {
+
+    private String key;
+    private String type;
+
+    @Override
+    public String getKey() {
+        return key;
+    }
+
+    @Override
+    public void setKey(String key) {
+        this.key = key;
+    }
+
+    @Override
+    public String getType() {
+        return type;
+    }
+
+    @Override
+    public void setType(String type) {
+        this.type = type;
+    }
+
+}
@@ -12,8 +12,8 @@ import javax.interceptor.AroundInvoke;
 import javax.interceptor.Interceptor;
 import javax.interceptor.InvocationContext;
 import java.io.Serializable;
-import org.demoiselle.jee.security.annotations.LoggedIn;
-import org.demoiselle.jee.security.interfaces.SecurityContext;
+import org.demoiselle.jee.security.annotation.LoggedIn;
+import org.demoiselle.jee.core.interfaces.security.SecurityContext;
 /**
  * <p>
@@ -9,19 +9,18 @@ package org.demoiselle.jee.security.interceptor;
 import org.demoiselle.jee.security.exception.AuthorizationException;
 import javax.annotation.Priority;
-import javax.enterprise.inject.spi.CDI;
 import javax.interceptor.AroundInvoke;
 import javax.interceptor.Interceptor;
 import javax.interceptor.InvocationContext;
 import java.io.Serializable;
+import java.security.Principal;
 import java.util.logging.Logger;
 import javax.inject.Inject;
-import static javax.sql.rowset.spi.SyncFactory.getLogger;
 import org.demoiselle.jee.core.annotation.Name;
 import org.demoiselle.jee.core.util.ResourceBundle;
 import org.demoiselle.jee.core.util.Strings;
-import org.demoiselle.jee.security.annotations.RequiredPermission;
-import org.demoiselle.jee.security.interfaces.SecurityContext;
+import org.demoiselle.jee.security.annotation.RequiredPermission;
+import org.demoiselle.jee.core.interfaces.security.SecurityContext;
 /**
  * <p>
@@ -38,6 +37,12 @@ public class RequiredPermissionInterceptor implements Serializable {
     private static final long serialVersionUID = 1L;
     @Inject
+    private SecurityContext securityContext;
+
+    @Inject
+    private Principal loggedUser;
+
+    @Inject
     private ResourceBundle bundle;
     @Inject
@@ -66,17 +71,17 @@ public class RequiredPermissionInterceptor implements Serializable {
         String operation = getOperation(ic);
         String username = null;
-        if (getSecurityContext().isLoggedIn()) {
-            username = getSecurityContext().getUser().getName();
-            getLogger().finest(bundle.getString("access-checking", username, operation, resource));
+        if (securityContext.isLoggedIn()) {
+            username = loggedUser.getName();
+            logger.finest(bundle.getString("access-checking", username, operation, resource));
         }
-        if (!getSecurityContext().hasPermission(resource, operation)) {
-            getLogger().severe(bundle.getString("access-denied", username, operation, resource));
+        if (securityContext.hasPermission(resource, operation)) {
+            logger.severe(bundle.getString("access-denied", username, operation, resource));
             throw new AuthorizationException(bundle.getString("access-denied-ui", resource, operation));
         }
-        getLogger().fine(bundle.getString("access-allowed", username, operation, resource));
+        logger.fine(bundle.getString("access-allowed", username, operation, resource));
         return ic.proceed();
     }
@@ -144,7 +149,4 @@ public class RequiredPermissionInterceptor implements Serializable {
         }
     }
-    private SecurityContext getSecurityContext() {
-        return CDI.current().select(SecurityContext.class).get();
-    }
 }
@@ -9,11 +9,11 @@ package org.demoiselle.jee.security.interceptor;
 import org.demoiselle.jee.security.exception.AuthorizationException;
 import javax.annotation.Priority;
-import javax.enterprise.inject.spi.CDI;
 import javax.interceptor.AroundInvoke;
 import javax.interceptor.Interceptor;
 import javax.interceptor.InvocationContext;
 import java.io.Serializable;
+import java.security.Principal;
 import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.List;
@@ -21,8 +21,8 @@ import java.util.List;
 import java.util.logging.Logger;
 import javax.inject.Inject;
 import org.demoiselle.jee.core.util.ResourceBundle;
-import org.demoiselle.jee.security.annotations.RequiredRole;
-import org.demoiselle.jee.security.interfaces.SecurityContext;
+import org.demoiselle.jee.security.annotation.RequiredRole;
+import org.demoiselle.jee.core.interfaces.security.SecurityContext;
 /**
  * <p>
@@ -39,6 +39,12 @@ public class RequiredRoleInterceptor implements Serializable {
     private static final long serialVersionUID = 1L;
     @Inject
+    private SecurityContext securityContext;
+
+    @Inject
+    private Principal loggedUser;
+
+    @Inject
     private ResourceBundle bundle;
     @Inject
@@ -64,27 +70,27 @@ public class RequiredRoleInterceptor implements Serializable {
     public Object manage(final InvocationContext ic) throws Exception {
         List<String> roles = getRoles(ic);
-        if (getSecurityContext().isLoggedIn()) {
+        if (securityContext.isLoggedIn()) {
             logger.info(
-                    bundle.getString("has-role-verification", getSecurityContext().getUser().getName(), roles));
+                    bundle.getString("has-role-verification", loggedUser.getName(), roles));
         }
         List<String> userRoles = new ArrayList<String>();
         for (String role : roles) {
-            if (getSecurityContext().hasRole(role)) {
+            if (securityContext.hasRole(role)) {
                 userRoles.add(role);
             }
         }
         if (userRoles.isEmpty()) {
             logger.severe(
-                    bundle.getString("does-not-have-role", getSecurityContext().getUser().getName(), roles));
+                    bundle.getString("does-not-have-role", loggedUser.getName(), roles));
             throw new AuthorizationException(bundle.getString("does-not-have-role-ui", roles));
         }
-        logger.fine(bundle.getString("user-has-role", getSecurityContext().getUser().getName(), userRoles));
+        logger.fine(bundle.getString("user-has-role", loggedUser.getName(), userRoles));
         return ic.proceed();
     }
@@ -110,8 +116,4 @@ public class RequiredRoleInterceptor implements Serializable {
         return Arrays.asList(roles);
     }
-    private SecurityContext getSecurityContext() {
-        return CDI.current().select(SecurityContext.class).get();
-    }
-
 }
@@ -1,38 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security.interfaces;
-
-import java.io.Serializable;
-import java.security.Principal;
-import java.util.List;
-import java.util.Map;
-
-import javax.enterprise.context.RequestScoped;
-
-/**
- * <p>
- * Structure used to handle both authentication and authorizations mechanisms.
- * </p>
- *
- * @author SERPRO
- */
-@RequestScoped
-public interface LoggedUser extends Principal, Serializable {
-
-    public String getId();
-
-    public void setId(String id);
-
-    public Map<String, String> getPermissions();
-
-    public void setPermissions(Map<String, String> premissions);
-
-    public List<String> getRoles();
-
-    public void setRoles(List<String> roles);
-
-}
@@ -1,86 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security.interfaces;
-
-import java.io.Serializable;
-import java.security.Principal;
-import java.util.Map;
-import java.util.Set;
-import org.demoiselle.jee.security.exception.AuthorizationException;
-import org.demoiselle.jee.security.exception.NotLoggedInException;
-
-/**
- * <p>
- * Structure used to handle both authentication and authorizations mechanisms.
- * </p>
- *
- * @author SERPRO
- */
-public interface SecurityContext extends Serializable {
-
-    /**
-     * Checks if a specific user is logged in.
-     *
-     * @return {@code true} if the user is logged in
-     */
-    boolean isLoggedIn();
-
-    /**
-     * @throws NotLoggedInException if there is no user logged in a specific
-     * session
-     */
-    void checkLoggedIn();
-
-    /**
-     * Checks if the logged user has permission to execute an specific operation
-     * on a specific resource.
-     *
-     * @param resource resource to be checked
-     * @param operation operation to be checked
-     * @return {@code true} if the user has the permission
-     * @throws AuthorizationException When the permission checking fails, this
-     * exception is thrown.
-     * @throws NotLoggedInException if there is no user logged in a specific
-     * session.
-     */
-    boolean hasPermission(String resource, String operation);
-
-    /**
-     * Checks if the logged user has an specific role
-     *
-     * @param role role to be checked
-     * @return {@code true} if the user has the role
-     * @throws AuthorizationException When the permission checking fails, this
-     * exception is thrown.
-     * @throws NotLoggedInException if there is no user logged in a specific
-     * session.
-     */
-    boolean hasRole(String role);
-
-    /**
-     * Return the user logged in the session.
-     *
-     * @return the user logged in a specific authenticated session. If there is
-     * no active session {@code null} is returned.
-     */
-    Principal getUser();
-
-    void setUser(Principal principal);
-
-    String getToken();
-
-    void setToken(String token);
-
-    void setRoles(Set<String> roles);
-
-    void setPermission(Map<String, String> permissions);
-
-    Set<String> getResources(String operation);
-
-    Set<String> getOperations(String resources);
-
-}
@@ -1,27 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.security.interfaces;
-
-import java.io.Serializable;
-
-import org.demoiselle.jee.security.LoggedUser;
-import org.demoiselle.jee.security.Token;
-
-/**
- * <p>
- * Structure used to handle both authentication and authorizations mechanisms.
- * </p>
- *
- * @author SERPRO
- */
-public interface TokensManager extends Serializable {
-
-    public LoggedUser getUser(Token token);
-
-    public String create(LoggedUser user);
-
-}
@@ -1,5 +0,0 @@
-.settings
-.classpath
-.project
-/target/
-/bin/
@@ -1,37 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
-    <modelVersion>4.0.0</modelVersion>
-    <artifactId>demoiselle-ws-jaxrs</artifactId>
-    <packaging>jar</packaging>
-    
-    <name>Demoiselle Web Service</name>
-	<description>
-		Demoiselle Web Service
-	</description>
-	
-	<parent>
-		<groupId>org.demoiselle.jee</groupId>
-		<artifactId>demoiselle-parent</artifactId>		
-		<version>3.0.0-BETA1-SNAPSHOT</version>
-		<relativePath>../demoiselle-parent</relativePath>
-	</parent>		
-	
-    <dependencies>
-        
-        <dependency>
-            <groupId>org.demoiselle.jee</groupId>
-            <artifactId>demoiselle-core</artifactId>
-        </dependency>
-
-        <dependency>
-            <groupId>javax.ws.rs</groupId>
-            <artifactId>javax.ws.rs-api</artifactId>
-        </dependency>
-        
-        <dependency>
-            <groupId>javax.json</groupId>
-            <artifactId>javax.json-api</artifactId>
-        </dependency>
-        
-    </dependencies>
-</project>
@@ -1,59 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.ws.jaxrs;
-
-import java.util.logging.Logger;
-import javax.annotation.PostConstruct;
-import javax.inject.Inject;
-import javax.ws.rs.client.ClientRequestContext;
-import javax.ws.rs.client.ClientRequestFilter;
-import javax.ws.rs.client.ClientResponseContext;
-import javax.ws.rs.client.ClientResponseFilter;
-import javax.ws.rs.container.ContainerRequestContext;
-import javax.ws.rs.container.ContainerRequestFilter;
-import javax.ws.rs.container.ContainerResponseContext;
-import javax.ws.rs.container.ContainerResponseFilter;
-import javax.ws.rs.container.PreMatching;
-import javax.ws.rs.ext.Provider;
-
-/**
- *
- * @author 70744416353
- */
-@Provider
-@PreMatching
-public class JaxRsFilter implements ClientRequestFilter, ClientResponseFilter, ContainerRequestFilter, ContainerResponseFilter {
-
-    @Inject
-    private Logger LOG;
-
-    @Override
-    public void filter(ClientRequestContext requestContext) {
-    }
-
-    @Override
-    public void filter(ClientRequestContext requestContext, ClientResponseContext responseContext) {
-    }
-
-    @Override
-    public void filter(ContainerRequestContext requestContext) {
-    }
-
-    @Override
-    public void filter(ContainerRequestContext requestContext, ContainerResponseContext response) {
-        response.getHeaders().putSingle("Demoiselle", "3.0.0");
-        response.getHeaders().putSingle("Access-Control-Allow-Origin", "*");
-        response.getHeaders().putSingle("Access-Control-Allow-Methods", "OPTIONS, GET, POST, PUT, DELETE");
-        response.getHeaders().putSingle("Access-Control-Allow-Headers", "Content-Type");
-    }
-
-    @PostConstruct
-    public void init() {
-        LOG.info("Demoiselle Module - Rest");
-    }
-
-}
@@ -1,11 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-/**
- * Esta pacote tem o objetivo de conter as classes relacionadas aos
- * facilitadores de CRUD do framework Demoiselle.
- */
-package org.demoiselle.jee.ws.jaxrs.crud;
 \ No newline at end of file
@@ -1,41 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.ws.jaxrs.exception;
-
-import java.util.HashMap;
-
-import org.demoiselle.jee.core.exception.DemoiselleException;
-
-public class DemoiselleRESTException extends DemoiselleException {
-
-	private static final long serialVersionUID = 519965615171844237L;
-
-	private HashMap<String, String> messages = new HashMap<String, String>();
-
-	private int statusCode;
-
-	public DemoiselleRESTException() {
-
-	}
-	
-	public DemoiselleRESTException(String string) {
-		super(string);
-	}
-
-	public int getStatusCode() {
-		return statusCode;
-	}
-
-	public void addMessage(String field, String msg) {
-		this.statusCode = 422;
-		messages.put(field, msg);
-	}
-
-	public HashMap<String, String> getMessages() {
-		return messages;
-	}
-}
@@ -1,68 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.ws.jaxrs.exception.mapper;
-
-import java.io.PrintWriter;
-import java.io.StringWriter;
-import java.util.HashMap;
-
-import javax.ws.rs.WebApplicationException;
-import javax.ws.rs.core.MediaType;
-import javax.ws.rs.core.Response;
-import javax.ws.rs.ext.ExceptionMapper;
-import javax.ws.rs.ext.Provider;
-
-import org.demoiselle.jee.ws.jaxrs.exception.DemoiselleRESTException;
-
-@Provider
-public class GenericExceptionMapper implements ExceptionMapper<Exception> {
-
-	public Response toResponse(Exception ex) {
-
-		StringWriter errorStackTrace = new StringWriter();
-		ex.printStackTrace(new PrintWriter(errorStackTrace));
-
-		// Verifica se a exception é de validação de PAYLOAD do REST
-		if (ex.getCause() instanceof DemoiselleRESTException) {
-			DemoiselleRESTException exDemoiselleREST = (DemoiselleRESTException) ex.getCause();
-			if (!exDemoiselleREST.getMessages().isEmpty()) {
-				return Response.status(exDemoiselleREST.getStatusCode()).entity(exDemoiselleREST.getMessages())
-						.type(MediaType.APPLICATION_JSON).build();
-			}
-		}
-
-		HashMap<String, String> entity = new HashMap<String, String>();
-
-		// No caso de existir message ele mostra a MESSAGE da Exception
-		if (ex.getMessage() != null) {
-			entity.put("error", ex.getMessage());			
-
-			// Pega toda as mensagens da stacktrace
-			int level = 1;
-			while (ex.getCause() != null) {
-				ex = (Exception) ex.getCause();
-				if (!ex.getMessage().isEmpty()) {
-					entity.put("inner_cause_" + level, ex.getMessage());
-				}
-				level += 1;
-			}
-			
-			// Por padrão retorna SERVER ERROR, mas tenta encontrar o status do RESPONSE se for WebApplicationException
-			// http://docs.oracle.com/javaee/7/api/javax/ws/rs/WebApplicationException.html
-			int responseCode = Response.Status.INTERNAL_SERVER_ERROR.getStatusCode();
-			if (ex instanceof WebApplicationException) {
-				responseCode = ((WebApplicationException)ex).getResponse().getStatus();
-			}
-
-			return Response.status(responseCode).entity(entity).type(MediaType.APPLICATION_JSON).build();
-		}
-
-		entity.put("error", "Erro interno desconhecido no servidor.");
-		return Response.status(500).entity(entity).type(MediaType.APPLICATION_JSON).build();
-	}
-
-}
@@ -1,25 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.ws.jaxrs.interceptor;
-
-import static java.lang.annotation.ElementType.METHOD;
-import static java.lang.annotation.ElementType.TYPE;
-import static java.lang.annotation.RetentionPolicy.RUNTIME;
-
-import java.lang.annotation.Inherited;
-import java.lang.annotation.Retention;
-import java.lang.annotation.Target;
-
-import javax.interceptor.InterceptorBinding;
-
-@Inherited
-@InterceptorBinding
-@Target({ METHOD, TYPE })
-@Retention(RUNTIME)
-public @interface ValidatePayload {
-
-}
 \ No newline at end of file
@@ -1,62 +0,0 @@
-/*
- * Demoiselle Framework
- *
- * License: GNU Lesser General Public License (LGPL), version 3 or later.
- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
- */
-package org.demoiselle.jee.ws.jaxrs.interceptor;
-
-import java.io.Serializable;
-import java.util.HashSet;
-import java.util.Set;
-
-import javax.interceptor.AroundInvoke;
-import javax.interceptor.Interceptor;
-import javax.interceptor.InvocationContext;
-import javax.validation.ConstraintViolation;
-import javax.validation.UnexpectedTypeException;
-import javax.validation.Validation;
-import javax.validation.Validator;
-import javax.validation.ValidatorFactory;
-
-import org.demoiselle.jee.ws.jaxrs.exception.DemoiselleRESTException;
-
-@Interceptor
-@ValidatePayload
-public class ValidatePayloadInterceptor implements Serializable {
-
-	private static final long serialVersionUID = 1L;
-
-	@AroundInvoke
-	public Object manage(final InvocationContext ic) throws Exception {
-		DemoiselleRESTException ex = new DemoiselleRESTException();
-		Set<ConstraintViolation<?>> violations = new HashSet<ConstraintViolation<?>>();
-		for (Object params : ic.getParameters()) {
-			if (params != null) {
-				ValidatorFactory dfv = Validation.buildDefaultValidatorFactory();
-				Validator validator = dfv.getValidator();
-				try {
-					violations.addAll(validator.validate(params));
-					for (ConstraintViolation<?> violation : violations) {
-						String field = (violation.getRootBeanClass().getSimpleName() + "_"
-								+ violation.getPropertyPath()).toLowerCase();
-						// GPMessage msg =
-						// GPMessage.INVALID_FIELD_P1.setSufix(violation.getConstraintDescriptor()
-						// .getAnnotation().annotationType().getSimpleName().toLowerCase());
-
-						ex.addMessage(field, violation.getMessage());
-					}
-				} catch (UnexpectedTypeException cause) {
-					// GPMessage msg = GPMessage.GENERAL_ERROR_P1;
-					// msg.setParam(cause.getMessage());
-					throw new DemoiselleRESTException("ERRO GENERICO -> ALTERAR");
-				}
-			}
-		}
-
-		if (!violations.isEmpty() && !ex.getMessages().isEmpty()) {
-			throw ex;
-		}
-		return ic.proceed();
-	}
-}
 \ No newline at end of file
 <?xml version="1.0" encoding="UTF-8"?>
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
-	<modelVersion>4.0.0</modelVersion>
-
-	<groupId>org.demoiselle.jee</groupId>
-	<artifactId>demoiselle-build</artifactId>
-	<packaging>pom</packaging>
-	<version>3.0.0-BETA1-SNAPSHOT</version>
-
-	<name>Demoiselle Framework</name>
-	<description>Framework de integração para Java EE 7 baseado na especificação CDI 1.2 (JSR 346).</description>
-	<url>http://demoiselle.io</url>
-
-	<licenses>
-		<license>
-			<name>GNU Lesser General Public License, Version 3</name>
-			<url>http://www.gnu.org/licenses/lgpl-3.0.txt</url>
-		</license>
-	</licenses>
-
-	<organization>
-		<name>SERPRO - Serviço Federal de Processamento de Dados</name>
-		<url>http://www.serpro.gov.br</url>
-	</organization>
-
-	<developers>
-
-		<developer>
-			<name>Cassio Maes da Fonseca</name>
-			<email>cassiomaes@gmail.com</email>
-			<organization>SERPRO</organization>
-			<organizationUrl>http://www.serpro.gov.br</organizationUrl>
-		</developer>
-
-		<developer>
-			<name>Clovis Lemes Ferreira Junior</name>
-			<email>clovisjunior2009@gmail.com</email>
-			<organization>SERPRO</organization>
-			<organizationUrl>http://www.serpro.gov.br</organizationUrl>
-		</developer>
-
-		<developer>
-			<name>Julian Cesar dos Santos</name>
-			<email>juliancesar@gmail.com</email>
-			<organization>SERPRO</organization>
-			<organizationUrl>http://www.serpro.gov.br</organizationUrl>
-		</developer>
-
-		<developer>
-			<name>Paulo Gladson Ximenes Pinheiro</name>
-			<email>paulopinheiro777@gmail.com</email>
-			<organization>SERPRO</organization>
-			<organizationUrl>http://www.serpro.gov.br</organizationUrl>
-		</developer>
-
-		<developer>
-			<name>Vanderson Botelho da Silva</name>
-			<email>botelhojp@gmail.com</email>
-			<organization>SERPRO</organization>
-			<organizationUrl>http://www.serpro.gov.br</organizationUrl>
-		</developer>
-
-	</developers>
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+
+    <groupId>org.demoiselle.jee</groupId>
+    <artifactId>demoiselle-build</artifactId>
+    <packaging>pom</packaging>
+    <version>3.0.0-BETA1-SNAPSHOT</version>
+
+    <name>Demoiselle Framework</name>
+    <description>Framework de integração para Java EE 7 baseado na especificação CDI 1.2 (JSR 346).</description>
+    <url>http://demoiselle.io</url>
+
+    <licenses>
+        <license>
+            <name>GNU Lesser General Public License, Version 3</name>
+            <url>http://www.gnu.org/licenses/lgpl-3.0.txt</url>
+        </license>
+    </licenses>
+
+    <organization>
+        <name>SERPRO - Serviço Federal de Processamento de Dados</name>
+        <url>http://www.serpro.gov.br</url>
+    </organization>
+
+    <developers>
+
+        <developer>
+            <name>Cassio Maes da Fonseca</name>
+            <email>cassiomaes@gmail.com</email>
+            <organization>SERPRO</organization>
+            <organizationUrl>http://www.serpro.gov.br</organizationUrl>
+        </developer>
+
+        <developer>
+            <name>Clovis Lemes Ferreira Junior</name>
+            <email>clovisjunior2009@gmail.com</email>
+            <organization>SERPRO</organization>
+            <organizationUrl>http://www.serpro.gov.br</organizationUrl>
+        </developer>
+
+        <developer>
+            <name>Julian Cesar dos Santos</name>
+            <email>juliancesar@gmail.com</email>
+            <organization>SERPRO</organization>
+            <organizationUrl>http://www.serpro.gov.br</organizationUrl>
+        </developer>
+
+        <developer>
+            <name>Paulo Gladson Ximenes Pinheiro</name>
+            <email>paulopinheiro777@gmail.com</email>
+            <organization>SERPRO</organization>
+            <organizationUrl>http://www.serpro.gov.br</organizationUrl>
+        </developer>
+
+        <developer>
+            <name>Vanderson Botelho da Silva</name>
+            <email>botelhojp@gmail.com</email>
+            <organization>SERPRO</organization>
+            <organizationUrl>http://www.serpro.gov.br</organizationUrl>
+        </developer>
+
+    </developers>
-	<modules>
-		<module>demoiselle-parent</module>
-		<module>demoiselle-core</module>
-		<module>demoiselle-persistence-jpa</module>
-		<module>demoiselle-security</module>
-		<module>demoiselle-ws-jaxrs</module>
-	</modules>	
-
-	<properties>
-		<project.alias>framework</project.alias>
-		<java.version>1.8</java.version>
-		<maven.compiler.source>1.8</maven.compiler.source>
-		<maven.compiler.target>1.8</maven.compiler.target>
-		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-	</properties>
+    <modules>
+        <module>demoiselle-parent</module>
+        <module>demoiselle-core</module>
+        <module>demoiselle-persistence-jpa</module>
+        <module>demoiselle-rest</module>
+        <module>demoiselle-security</module>
+        <module>demoiselle-security-basic</module>
+        <!--<module>demoiselle-security-jwt</module>-->
+    </modules>	
+
+    <properties>
+        <project.alias>framework</project.alias>
+        <java.version>1.8</java.version>
+        <maven.compiler.source>1.8</maven.compiler.source>
+        <maven.compiler.target>1.8</maven.compiler.target>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+    </properties>
-	<build>
-		<plugins>
-			<plugin>
-				<groupId>org.apache.maven.plugins</groupId>
-				<artifactId>maven-assembly-plugin</artifactId>
-				<version>2.6</version>
-			</plugin>
-
-			<plugin>
-				<groupId>org.apache.maven.plugins</groupId>
-				<artifactId>maven-deploy-plugin</artifactId>
-				<version>2.8.2</version>
-			</plugin>
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-assembly-plugin</artifactId>
+                <version>2.6</version>
+            </plugin>
+
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-deploy-plugin</artifactId>
+                <version>2.8.2</version>
+            </plugin>
-			<plugin>
-				<groupId>org.apache.maven.plugins</groupId>
-				<artifactId>maven-source-plugin</artifactId>
-				<version>2.2.1</version>
-				<executions>
-					<execution>
-						<id>attach-sources</id>
-						<goals>
-							<goal>jar-no-fork</goal>
-						</goals>
-					</execution>
-				</executions>
-			</plugin>
-<!-- 
-			<plugin>
-				<groupId>org.apache.maven.plugins</groupId>
-				<artifactId>maven-javadoc-plugin</artifactId>
-				<version>2.9.1</version>
-				<executions>
-					<execution>
-						<id>attach-javadocs</id>
-						<goals>
-							<goal>jar</goal>
-						</goals>
-					</execution>
-				</executions>
-			</plugin>
- -->
-			<plugin>
-				<groupId>org.apache.maven.plugins</groupId>
-				<artifactId>maven-gpg-plugin</artifactId>
-				<version>1.5</version>
-				<executions>
-					<execution>
-						<id>sign-artifacts</id>
-						<phase>verify</phase>
-						<goals>
-							<goal>sign</goal>
-						</goals>
-					</execution>
-				</executions>
-			</plugin>
-
-			<plugin>
-				<groupId>org.sonatype.plugins</groupId>
-				<artifactId>nexus-staging-maven-plugin</artifactId>
-				<version>1.6.3</version>
-				<extensions>true</extensions>
-				<configuration>
-					<serverId>sonatype-nexus-staging</serverId>
-					<nexusUrl>https://oss.sonatype.org/</nexusUrl>
-					<autoReleaseAfterClose>false</autoReleaseAfterClose>
-				</configuration>
-			</plugin>
-
-			<plugin>
-				<groupId>org.apache.maven.plugins</groupId>
-				<artifactId>maven-release-plugin</artifactId>
-				<version>2.5</version>
-				<configuration>
-					<autoVersionSubmodules>true</autoVersionSubmodules>
-					<useReleaseProfile>false</useReleaseProfile>
-					<releaseProfiles>release</releaseProfiles>
-					<goals>deploy</goals>
-				</configuration>
-			</plugin>
-		</plugins>
-
-	</build>
-
-	<scm>
-		<connection>scm:git:git@github.com:demoiselle/${project.alias}.git</connection>
-		<developerConnection>scm:git:git@github.com:demoiselle/${project.alias}.git</developerConnection>
-		<url>http://github.com/demoiselle/${project.alias}</url>
-		<tag>HEAD</tag>
-	</scm>
-
-	<distributionManagement>
-		<site>
-			<id>demoiselle.sourceforge.net</id>
-			<url>${site.url}</url>
-		</site>
-
-		<snapshotRepository>
-			<id>sonatype-nexus-snapshots</id>
-			<url>https://oss.sonatype.org/content/repositories/snapshots</url>
-		</snapshotRepository>
-
-		<repository>
-			<id>sonatype-nexus-staging</id>
-			<url>https://oss.sonatype.org/service/local/staging/deploy/maven2/</url>
-		</repository>
-	</distributionManagement>
-
-	<repositories>
-		<repository>
-			<id>sonatype-nexus-snapshots</id>
-			<name>Sonatype Nexus Snapshots</name>
-			<url>https://oss.sonatype.org/content/repositories/snapshots</url>
-			<snapshots>
-				<enabled>true</enabled>
-			</snapshots>
-			<releases>
-				<enabled>false</enabled>
-			</releases>
-		</repository>
-
-		<repository>
-			<id>sonatype-nexus-releases</id>
-			<name>Sonatype Nexus Releases</name>
-			<url>https://oss.sonatype.org/content/repositories/releases</url>
-			<snapshots>
-				<enabled>false</enabled>
-			</snapshots>
-			<releases>
-				<enabled>true</enabled>
-			</releases>
-		</repository>
-	</repositories>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-source-plugin</artifactId>
+                <version>2.2.1</version>
+                <executions>
+                    <execution>
+                        <id>attach-sources</id>
+                        <goals>
+                            <goal>jar-no-fork</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
+            <!-- 
+                                   <plugin>
+                                           <groupId>org.apache.maven.plugins</groupId>
+                                           <artifactId>maven-javadoc-plugin</artifactId>
+                                           <version>2.9.1</version>
+                                           <executions>
+                                                   <execution>
+                                                           <id>attach-javadocs</id>
+                                                           <goals>
+                                                                   <goal>jar</goal>
+                                                           </goals>
+                                                   </execution>
+                                           </executions>
+                                   </plugin>
+            -->
+            <!--			<plugin>
+                    <groupId>org.apache.maven.plugins</groupId>
+                    <artifactId>maven-gpg-plugin</artifactId>
+                    <version>1.5</version>
+                    <executions>
+                            <execution>
+                                    <id>sign-artifacts</id>
+                                    <phase>verify</phase>
+                                    <goals>
+                                            <goal>sign</goal>
+                                    </goals>
+                            </execution>
+                    </executions>
+            </plugin>-->
+
+            <plugin>
+                <groupId>org.sonatype.plugins</groupId>
+                <artifactId>nexus-staging-maven-plugin</artifactId>
+                <version>1.6.3</version>
+                <extensions>true</extensions>
+                <configuration>
+                    <serverId>sonatype-nexus-staging</serverId>
+                    <nexusUrl>https://oss.sonatype.org/</nexusUrl>
+                    <autoReleaseAfterClose>false</autoReleaseAfterClose>
+                </configuration>
+            </plugin>
+
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-release-plugin</artifactId>
+                <version>2.5</version>
+                <configuration>
+                    <autoVersionSubmodules>true</autoVersionSubmodules>
+                    <useReleaseProfile>false</useReleaseProfile>
+                    <releaseProfiles>release</releaseProfiles>
+                    <goals>deploy</goals>
+                </configuration>
+            </plugin>
+        </plugins>
+
+    </build>
+
+    <scm>
+        <connection>scm:git:git@github.com:demoiselle/${project.alias}.git</connection>
+        <developerConnection>scm:git:git@github.com:demoiselle/${project.alias}.git</developerConnection>
+        <url>http://github.com/demoiselle/${project.alias}</url>
+        <tag>HEAD</tag>
+    </scm>
+
+    <distributionManagement>
+        <site>
+            <id>demoiselle.sourceforge.net</id>
+            <url>${site.url}</url>
+        </site>
+
+        <snapshotRepository>
+            <id>sonatype-nexus-snapshots</id>
+            <url>https://oss.sonatype.org/content/repositories/snapshots</url>
+        </snapshotRepository>
+
+        <repository>
+            <id>sonatype-nexus-staging</id>
+            <url>https://oss.sonatype.org/service/local/staging/deploy/maven2/</url>
+        </repository>
+    </distributionManagement>
+
+    <repositories>
+        <repository>
+            <id>sonatype-nexus-snapshots</id>
+            <name>Sonatype Nexus Snapshots</name>
+            <url>https://oss.sonatype.org/content/repositories/snapshots</url>
+            <snapshots>
+                <enabled>true</enabled>
+            </snapshots>
+            <releases>
+                <enabled>false</enabled>
+            </releases>
+        </repository>
+
+        <repository>
+            <id>sonatype-nexus-releases</id>
+            <name>Sonatype Nexus Releases</name>
+            <url>https://oss.sonatype.org/content/repositories/releases</url>
+            <snapshots>
+                <enabled>false</enabled>
+            </snapshots>
+            <releases>
+                <enabled>true</enabled>
+            </releases>
+        </repository>
+    </repositories>
 </project>
	@@ -1,53 +0,0 @@	@@ -1,53 +0,0 @@
1	-/*
2	- * Demoiselle Framework
3	- *
4	- * License: GNU Lesser General Public License (LGPL), version 3 or later.
5	- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
6	- */
7	-package org.demoiselle.jee.core.annotation;
8	-import static java.lang.annotation.ElementType.FIELD;
9	-import static java.lang.annotation.ElementType.METHOD;
10	-import static java.lang.annotation.ElementType.PARAMETER;
11	-import static java.lang.annotation.ElementType.TYPE;
12	-import static java.lang.annotation.RetentionPolicy.RUNTIME;
13	-
14	-import java.lang.annotation.Inherited;
15	-import java.lang.annotation.Retention;
16	-import java.lang.annotation.Target;
17	-
18	-import javax.inject.Qualifier;
19	-
20	-/**
21	- *
22	- * <p>
23	- * This literal marks a bean to be selected at runtime based on a priority system.
24	- * The user qualifies the injection point with this literal and then at runtime
25	- * the CDI engine will circle through all candidate subtypes to be injected
26	- * that are annotated with {@link Priority}. If there is only one subtype with the
27	- * highest priority then this one will be selected to be injected.
28	- * </p>
29	- *
30	- * <p>
31	- * This allows users to plug in libraries with new candidates and have them be selected
32	- * if their priority values are higher than the default values already present. One example
33	- * is the {@link org.demoiselle.security.Authorizer} type, the framework has a {@link org.demoiselle.internal.implementation.DefaultAuthorizer}
34	- * with {@link Priority#L1_PRIORITY the lowest priority} but the user can add libraries with new
35	- * implementations of {@link org.demoiselle.security.Authorizer} annotated with higher priorities, the code will
36	- * then automatically select these new implementations with no extra configuration.
37	- * </p>
38	- *
39	- * <p>
40	- * This annotation must be used with supported types. Usually this involves creating {@link javax.enterprise.inject.Produces} CDI
41	- * producer methods that will select the correct strategy. To create your own producer
42	- * methods that support strategy selection, use the utility {@linkplain org.demoiselle.internal.producer.StrategySelector}.
43	- * </p>
44	- *
45	- * @author SERPRO
46	- */
47	-@Qualifier
48	-@Inherited
49	-@Retention(RUNTIME)
50	-@Target({ TYPE, FIELD, METHOD, PARAMETER })
51	-public @interface Strategy {
52	-
53	-}
	@@ -1,60 +0,0 @@	@@ -1,60 +0,0 @@
1	-/*
2	- * Demoiselle Framework
3	- *
4	- * License: GNU Lesser General Public License (LGPL), version 3 or later.
5	- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
6	- */
7	-package org.demoiselle.jee.core.annotation;
8	-
9	-import static java.lang.annotation.ElementType.FIELD;
10	-import static java.lang.annotation.ElementType.METHOD;
11	-import static java.lang.annotation.ElementType.PARAMETER;
12	-import static java.lang.annotation.ElementType.TYPE;
13	-import static java.lang.annotation.RetentionPolicy.RUNTIME;
14	-
15	-import java.lang.annotation.Inherited;
16	-import java.lang.annotation.Retention;
17	-import java.lang.annotation.Target;
18	-
19	-import javax.enterprise.util.Nonbinding;
20	-import javax.inject.Qualifier;
21	-
22	-/**
23	- * <p>
24	- * Type based non-binding qualifier.
25	- * </p>
26	- *
27	- * <p>
28	- * This annotation is used to qualify beans using a class type.
29	- * {@link javax.enterprise.inject.Produces} methods can then read this type and
30	- * use it to customize the bean creation process.
31	- * </p>
32	- *
33	- * <p>
34	- * The {@link #value()} attribute is non-binding, meaning multiple classes
35	- * qualified with this annotation, even with different values, will be
36	- * considered the same candidate for injection points. To avoid ambiguous
37	- * resolutions and select which candidate to choose usually you'll need a
38	- * producer method to read the type and select the best fitted candidate.
39	- * </p>
40	- *
41	- * <p>
42	- * The framework classes qualified with this annotation already have such
43	- * producers and the accepted values for this annotation will be detailed in
44	- * their respective documentations.
45	- * </p>
46	- *
47	- *
48	- * @author SERPRO
49	- *
50	- */
51	-@Qualifier
52	-@Inherited
53	-@Retention(RUNTIME)
54	-@Target({ TYPE, FIELD, METHOD, PARAMETER })
55	-public @interface Type {
56	-
57	- @Nonbinding
58	- Class<?> value() default Object.class;
59	-
60	-}
	@@ -1,23 +0,0 @@	@@ -1,23 +0,0 @@
1	-/*
2	- * Demoiselle Framework
3	- *
4	- * License: GNU Lesser General Public License (LGPL), version 3 or later.
5	- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
6	- */
7	-package org.demoiselle.jee.core.annotation.literal;
8	-
9	-import org.demoiselle.jee.core.annotation.Strategy;
10	-
11	-import javax.enterprise.util.AnnotationLiteral;
12	-
13	-/**
14	- * Annotation litteral that allows to create instances of the {@link Strategy} literal. The created instance can then be
15	- * used to call {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}.
16	- *
17	- * @see javax.enterprise.inject.spi.CDI
18	- * @author SERPRO
19	- */
20	-@SuppressWarnings("all")
21	-public class StrategyQualifier extends AnnotationLiteral<Strategy> implements Strategy {
22	-
23	-}
	@@ -1,41 +0,0 @@	@@ -1,41 +0,0 @@
1	-/*
2	- * Demoiselle Framework
3	- *
4	- * License: GNU Lesser General Public License (LGPL), version 3 or later.
5	- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
6	- */
7	-package org.demoiselle.jee.core.annotation.literal;
8	-
9	-import org.demoiselle.jee.core.annotation.Type;
10	-
11	-import javax.enterprise.util.AnnotationLiteral;
12	-
13	-/**
14	- * Annotation litteral that allows to create instances of the {@link Type}
15	- * literal. The created instance can then be used to call
16	- * {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}.
17	- *
18	- * @see javax.enterprise.inject.spi.CDI
19	- * @author SERPRO
20	- */
21	-@SuppressWarnings("all")
22	-public class TypeQualifier extends AnnotationLiteral<Type> implements Type {
23	-
24	- private static final long serialVersionUID = 1L;
25	-
26	- private final Class<?> value;
27	-
28	- /**
29	- * Constructor with string value of name literal.
30	- *
31	- * @param value value of name literal.
32	- */
33	- public TypeQualifier(Class<?> value) {
34	- this.value = value;
35	- }
36	-
37	- @Override
38	- public Class<?> value() {
39	- return this.value;
40	- }
41	-}
	@@ -1,11 +0,0 @@		@@ -1,11 +0,0 @@
1	-/*
2	- * Demoiselle Framework
3	- *
4	- * License: GNU Lesser General Public License (LGPL), version 3 or later.
5	- * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
6	- */
7	-/**
8	- * Esta pacote tem o objetivo de conter as classes relacionadas aos
9	- * facilitadores de CRUD do framework Demoiselle.
10	- */
11	-package org.demoiselle.jee.core.crud;
12	\ No newline at end of file	0	\ No newline at end of file
	@@ -0,0 +1,11 @@		@@ -0,0 +1,11 @@
		1	+/*
		2	+ * Demoiselle Framework
		3	+ *
		4	+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
		5	+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
		6	+ */
		7	+/**
		8	+ * Esta pacote tem o objetivo de conter as classes relacionadas aos
		9	+ * facilitadores de CRUD do framework Demoiselle.
		10	+ */
		11	+package org.demoiselle.jee.core.interfaces.crud;
0	\ No newline at end of file	12	\ No newline at end of file
@@ -0,0 +1,29 @@		@@ -0,0 +1,29 @@
	1	+/*
	2	+ * To change this license header, choose License Headers in Project Properties.
	3	+ * To change this template file, choose Tools \| Templates
	4	+ * and open the template in the editor.
	5	+ */
	6	+package org.demoiselle.jee.core.interfaces.security;
	7	+
	8	+import java.security.Principal;
	9	+import java.util.List;
	10	+import java.util.Map;
	11	+
	12	+/**
	13	+ *
	14	+ * @author 70744416353
	15	+ */
	16	+public interface DemoisellePrincipal extends Principal {
	17	+
	18	+ public String getId();
	19	+
	20	+ public void setId(String id);
	21	+
	22	+ public void setName(String name);
	23	+
	24	+ public void setRoles(List<String> roles);
	25	+
	26	+ public List<String> getRoles();
	27	+
	28	+ public Map<String, String> getPermissions();
	29	+}
@@ -0,0 +1,73 @@		@@ -0,0 +1,73 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ *
	4	+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
	5	+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
	6	+ */
	7	+package org.demoiselle.jee.core.interfaces.security;
	8	+
	9	+import java.io.Serializable;
	10	+import java.security.Principal;
	11	+import java.util.List;
	12	+import java.util.Map;
	13	+
	14	+/**
	15	+ * <p>
	16	+ * Structure used to handle both authentication and authorizations mechanisms.
	17	+ * </p>
	18	+ *
	19	+ * @author SERPRO
	20	+ */
	21	+public interface SecurityContext extends Serializable {
	22	+
	23	+ /**
	24	+ * Checks if a specific user is logged in.
	25	+ *
	26	+ * @return {@code true} if the user is logged in
	27	+ */
	28	+ boolean isLoggedIn();
	29	+
	30	+ /**
	31	+ * @throws NotLoggedInException if there is no user logged in a specific
	32	+ * session
	33	+ */
	34	+ void checkLoggedIn();
	35	+
	36	+ /**
	37	+ * Checks if the logged user has permission to execute an specific operation
	38	+ * on a specific resource.
	39	+ *
	40	+ * @param resource resource to be checked
	41	+ * @param operation operation to be checked
	42	+ * @return {@code true} if the user has the permission
	43	+ * @throws AuthorizationException When the permission checking fails, this
	44	+ * exception is thrown.
	45	+ * @throws NotLoggedInException if there is no user logged in a specific
	46	+ * session.
	47	+ */
	48	+ boolean hasPermission(String resource, String operation);
	49	+
	50	+ /**
	51	+ * Checks if the logged user has an specific role
	52	+ *
	53	+ * @param role role to be checked
	54	+ * @return {@code true} if the user has the role
	55	+ * @throws AuthorizationException When the permission checking fails, this
	56	+ * exception is thrown.
	57	+ * @throws NotLoggedInException if there is no user logged in a specific
	58	+ * session.
	59	+ */
	60	+ boolean hasRole(String role);
	61	+
	62	+ /**
	63	+ * Return the user logged in the session.
	64	+ *
	65	+ * @param token
	66	+ * @return the user logged in a specific authenticated session. If there is
	67	+ * no active session {@code null} is returned.
	68	+ */
	69	+ Principal getUser();
	70	+
	71	+ void setUser(Principal loggedUser);
	72	+
	73	+}
@@ -0,0 +1,21 @@		@@ -0,0 +1,21 @@
	1	+/*
	2	+ * To change this license header, choose License Headers in Project Properties.
	3	+ * To change this template file, choose Tools \| Templates
	4	+ * and open the template in the editor.
	5	+ */
	6	+package org.demoiselle.jee.core.interfaces.security;
	7	+
	8	+/**
	9	+ *
	10	+ * @author 70744416353
	11	+ */
	12	+public interface Token {
	13	+
	14	+ public String getKey();
	15	+
	16	+ public void setKey(String key);
	17	+
	18	+ public String getType();
	19	+
	20	+ public void setType(String type);
	21	+}
	@@ -0,0 +1,57 @@		@@ -0,0 +1,57 @@
		1	+/*
		2	+ * Demoiselle Framework
		3	+ *
		4	+ * License: GNU Lesser General Public License (LGPL), version 3 or later.
		5	+ * See the lgpl.txt file in the root directory or <https://www.gnu.org/licenses/lgpl.html>.
		6	+ */
		7	+package org.demoiselle.jee.core.message;
		8	+
		9	+import org.apache.deltaspike.core.api.message.MessageBundle;
		10	+import org.apache.deltaspike.core.api.message.MessageTemplate;
		11	+
		12	+@MessageBundle
		13	+public interface DemoiselleMessages {
		14	+
		15	+ @MessageTemplate("{version}")
		16	+ String version();
		17	+
		18	+ @MessageTemplate("{engine-on}")
		19	+ String engineOn();
		20	+
		21	+ @MessageTemplate("{resource-not-found}")
		22	+ String resourceNotFound();
		23	+
		24	+ @MessageTemplate("{key-not-found}")
		25	+ String keyNotFound(String key);
		26	+
		27	+ @MessageTemplate("{ambiguous-strategy-resolution}")
		28	+ String ambiguousStrategyResolution(String interfaceString, String implementations);
		29	+
		30	+ @MessageTemplate("{ambiguous-bean-resolution}")
		31	+ String ambiguousBeanResolution(String implementation);
		32	+
		33	+ @MessageTemplate("{bean-not-found}")
		34	+ String beanNotFound(String bean);
		35	+
		36	+ @MessageTemplate("{store-not-found}")
		37	+ String storeNotFound(String object, String scope);
		38	+
		39	+ @MessageTemplate("{more-than-one-exceptionhandler-defined-for-same-class}")
		40	+ String moreThanOneExceptionhandlerDefinedForSameClass(String clazz, String ex);
		41	+
		42	+ @MessageTemplate("{handling-exception}")
		43	+ String handlingException(String ex);
		44	+
		45	+ @MessageTemplate("{taking-off}")
		46	+ String takingOff();
		47	+
		48	+ @MessageTemplate("{engine-off}")
		49	+ String engineOff(String ex);
		50	+
		51	+ @MessageTemplate("{setting-up-bean-manager}")
		52	+ String settingUpBeanManagerException(String util);
		53	+
		54	+ @MessageTemplate("{processing-fail}")
		55	+ String processingFail();
		56	+
		57	+}
0	\ No newline at end of file	58	\ No newline at end of file