Role-Based User Authentication, Authorization and Secure Content Delivery System

Abstract: When web systems change, keeping data private and controlling who uses what becomes more pressing. Most security tools handle just simple identification tasks but struggle with fine-level permissions or strong protection for digital content, especially across complex stacks. Because of these shortcomings, this work brings a new stateless security design aimed at large- scale content distribution and user authorization tied to roles. Technically, the solution leverages a Spring Boot backend to enforce API-level security via Spring Security, while the frontend utilizes Angular to manage modular routing and responsive design. Bridging these layers, JSON Web Tokens (JWT) are employed to facilitate stateless, encrypted communication, eliminating the reliance on server-side sessions. Apart from old-style fixed designs, this setup keeps the user interface separate from the backend API - making access rules match no matter where you interact. Because of that split, what comes out is something ready for real-world use: built to grow, using MySQL to lock down data securely, while following today’s top-tier security guidelines for businesses.