JWT for APIs |
Thanks Paul
Here is how I actually implemented : the request is sent along with encoded token. Server then decodes token and verify if the valid param is qualified for a response For me obviously, only trusted client can have the passphrase to encode it , likewise on server end. I just tried to think deep if I have security hole anywhere along the path. JWT is much alike with API keys method. Thanks |
Messages In This Thread |
JWT for APIs - by ciadvantage - 06-19-2017, 10:07 PM
RE: JWT for APIs - by PaulD - 06-20-2017, 10:27 AM
RE: JWT for APIs - by ciadvantage - 06-20-2017, 09:11 PM
RE: JWT for APIs - by PaulD - 06-23-2017, 02:46 PM
RE: JWT for APIs - by ciadvantage - 06-24-2017, 08:37 AM
|