Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Andrey Unger2014-04-12 14:12:49
OAuth
Andrey Unger, 2014-04-12 14:12:49

Authorization in RESTfull

Gentlemen, tell me how to be with the token? Let's say a service client logs in through, say, OAuth and receives a token by which the server identifies it.
So how is this token stored on the server? After all, writing it, for example, into the database is not very safe, because if someone intercepts it, they can go under it.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
W
Warlock2, 2014-09-05
@Warlock2

Any HTTP request can be intercepted (listened). Though it is REST, though RPC. If it is scary to drive a token between the server and the client (cookie or query parameter), then you need to encrypt everything, for example, use HTTPS.

Similar questions
O
oculos2021-03-06 09:23:40
How to sign a request to ESIA using a certificate from CryptoPro? 0Reply
J
justslipknot2021-03-14 17:47:41
Authentication via VK in asp.net core web api. How to implement correctly? 1Reply
A
Anton Dyshkant2015-03-30 17:36:36
How to properly configure Google API OAuth 2.0 authorization in CodeIgniter? 0Reply
M
Mihis2019-09-26 19:55:56
How to implement OAuth2 server on your web server? 2Reply
@
@Twitt2019-09-27 10:53:05
Do I understand correctly that Oauth is a standard, and everyone implements it differently? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question