This is my first time the authentication of APIs and I am running in some constraints.
How can I pass the API key on the server from the Secure Remote Client's page (the customer has to connect the client's page / app to the user's account for)?
- Dylan When a client makes a request on the server, then a bunch of stuff together (request time, user_id) + hash, and hash are included in the request. On the server side, the same hash is re-organized on the basis of retrieving the key for the server, and following the same steps. If hashes do not match, it means that there is no point in making the client request to the server 1) the steps to make a hash, and more importantly, 2) use HP as a salt to make HP In this way you can determine the key of the key to your client, and that they are aware of authenticating without the actual API key.
Comments
Post a Comment