A
A
Al2016-09-16 01:13:30
API
Al, 2016-09-16 01:13:30

How to properly store session when developing JSON API?

We usually store the session id in the browser's cockie. But let's say I want to use my API in ios / android mobile applications, and I'm going to store a cookie in the application's memory and then insert it into each request from the application. But how right is this? Are there any tips on this?

Answer the question

In order to leave comments, you need to log in

1 answer(s)
M
Mikhail Osher, 2016-09-16
@Sanu0074

Authorization by token.
When authenticating, we give the client its token.
He sends it, let's say through the headers: X-Access-Token: bla bla bla
And check on the server.
Of course, do not be too lazy to raise https for such a thing.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question