I have an external resource that I'd like to keep restricted if the correct credentials are not available (among other checks). So I've got a basic HTTPClient going and I've tried to access a RESTful service and obviously it's given me the 'not authorised' code.
The basic idea is that I'd like to be able to identify the currently logged in user and check if they are authorised to access that data based on a SQL query I'll run with the user ID.
I'm not sure if I'm asking the wrong question and/or if this is the wrong way to go about it.
Thanks in advance,