Galera,
I'm starting the development of a system (java), and I'm in doubt about the technology. The system is totally restricted (login / password) and will be available on the internet, so I need security. I know a little Angular and wanted to use the same for ease. So I thought about using AngularJs + Spring MVC + Spring Security. In my thinking I prefer Spring because of the security module (I have some experience), I've even tested and managed to put security in rest services without much work. My doubt is that some people find this unnecessary, prefer to make the front layer with angular fully decoupled from the server and implement security manually, that is, create something manual even to treat authorized users (session), and thus protect the system / services, this would be the AngularJs + JEE (rest) solution. This last solution would be based on creating tokens (or something) manually and treat both the angular and rest services, but at first I find this treatment more complex and prone to failures, the spring from my point of view already brings this ready. What is your opinion? Also prefer the fully decoupled front layer? Or any suggestion (forget angular and just spring mvc for example)?
I'm going to run the project on a full JEE server. The application will have levels of users, ie some pages and services can only be accessed by a user with an administrator profile, for example.
Note: My knowledge of Spring MVC is not very broad, but I've done basic things and it seemed very simple.
Thank you.