Expose the authorization logic of your REST API using HATEOAS links
links()
HasLinks
formatLinksUsing()
Link