Prevent attack to api - Printable Version +- CodeIgniter Forums (https://forum.codeigniter.com) +-- Forum: Using CodeIgniter (https://forum.codeigniter.com/forumdisplay.php?fid=5) +--- Forum: General Help (https://forum.codeigniter.com/forumdisplay.php?fid=24) +--- Thread: Prevent attack to api (/showthread.php?tid=69602) |
Prevent attack to api - omid_student - 12-20-2017 Hello guys I have api that i created it with resful I use api key for access to this api But if hacker can use this api,so hacker can send many data and register in my database with pseudo data How prevent it? RE: Prevent attack to api - plonknimbuzz - 12-20-2017 you can set expired times to your token and disabled caching might give you little help --- but the real question is , how he can took your token? #he got my token from sql injection so that's not your token problem, but your apps problem #noo, he got my token from sniffing so, you need ssl /https https://www.smashingmagazine.com/2017/04/secure-web-app-http-headers/ RE: Prevent attack to api - omid_student - 12-21-2017 (12-20-2017, 12:54 PM)plonknimbuzz Wrote: you can set expired times to your token and disabled caching might give you little help This url https://www.smashingmagazine.com/2017/04/secure-web-app-http-headers/ is helpful Thanks |