<th><la:message key="labels.roles"/></th>
                                        <td><c:forEach var="rt" varStatus="s"
                                                       items="${roleItems}">
                                            <c:forEach var="rtid" varStatus="s" items="${roles}">
                                                <c:if test="${rtid==rt.id}">

 * Provides access to user name, roles, groups, and permissions.
 */
public interface FessUser extends Serializable {

    /**
     * Gets the user's display name.
     * @return The user's name.
     */
    String getName();

    /**
     * Gets the user's assigned role names.
     * @return Array of role names.
     */
    String[] getRoleNames();

    /**

		</postConstruct>
		<!-- fess_user index -->
		<postConstruct name="addIndexConfig">
			<arg>"fess_user.user/user"</arg>
		</postConstruct>
		<postConstruct name="addIndexConfig">
			<arg>"fess_user.role/role"</arg>
		</postConstruct>
		<postConstruct name="addIndexConfig">
			<arg>"fess_user.group/group"</arg>
		</postConstruct>
		<!-- fess_log index -->
		<postConstruct name="addIndexConfig">

    public void setRoles_Equal(String roles) {
        setRoles_Term(roles, null);
    }

    public void setRoles_Equal(String roles, ConditionOptionCall<TermQueryBuilder> opLambda) {
        setRoles_Term(roles, opLambda);
    }

    public void setRoles_Term(String roles) {
        setRoles_Term(roles, null);
    }

    public void setRoles_Term(String roles, ConditionOptionCall<TermQueryBuilder> opLambda) {

            AdminMaintenanceAction.ROLE + VIEW, //
            AdminSereqAction.ROLE, //
            AdminSereqAction.ROLE + VIEW, //
            AdminDashboardAction.ROLE, //
            AdminDashboardAction.ROLE + VIEW, //
            AdminWizardAction.ROLE, //
            AdminWizardAction.ROLE + VIEW, //
            AdminGeneralAction.ROLE, //
            AdminGeneralAction.ROLE + VIEW, //

     * For admin actions, verifies that the user has appropriate admin roles or
     * meets the secured annotation requirements.
     *
     * @param resource the login handling resource to check permission for
     * @throws LoginRequiredException if login is required
     * @throws UserRoleLoginException if the user doesn't have required roles
     */
    @Override

labels.hash=Hachage
labels.kuromojiFile=Fichier Kuromoji
labels.maxSize=Taille maximale
labels.order=Ordre
labels.purgeSuggestSearchLogDay=Supprimer les anciennes informations de suggestion
labels.q=Requête
labels.roles=Rôles
labels.suggestSearchLog=Journal de recherche de suggestions
labels.suggestWord=Suggérer un mot
labels.targetLabel=Étiquette
labels.term=Terme
labels.fields=Champs
labels.ex_q=Requête étendue

                throw new WebApiException(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, e);
            }
        }
    }

    /**
     * Sets the roles that are allowed to access the search engine API.
     *
     * @param acceptedRoles array of role names that can access the API
     */
    public void setAcceptedRoles(final String[] acceptedRoles) {
        this.acceptedRoles = acceptedRoles;
    }

    /**

func registerSTSRouter(router *mux.Router) {
	// Initialize STS.
	sts := &stsAPIHandlers{}

	// STS Router
	stsRouter := router.NewRoute().PathPrefix(SlashSeparator).Subrouter()

	// Assume roles with no JWT, handles AssumeRole.
	stsRouter.Methods(http.MethodPost).MatcherFunc(func(r *http.Request, rm *mux.RouteMatch) bool {
		ctypeOk := wildcard.MatchSimple("application/x-www-form-urlencoded*", r.Header.Get(xhttp.ContentType))

Si quieres asegurar tu API, hay varias cosas mejores que puedes hacer, por ejemplo:

* Asegúrate de tener modelos Pydantic bien definidos para tus request bodies y responses.
* Configura los permisos y roles necesarios usando dependencias.
* Nunca guardes contraseñas en texto plano, solo hashes de contraseñas.
* Implementa y utiliza herramientas criptográficas bien conocidas, como Passlib y JWT tokens, etc.