[英]Got a mobile app that pulls JSON data from from my server, how do I secure this connection?
I'm developing a website and mobile application that communicate with each other. 我正在开发彼此通信的网站和移动应用程序。
It's very basic at the moment: the app makes a get request to a URL and the server returns JSON data. 目前,这是非常基本的:应用程序向URL发出get请求,服务器返回JSON数据。
I want to secure this and make sure no-one can send a get request to the URL and get this data (only the website and the app). 我想确保这一点的安全,并确保没有人可以将获取请求发送到URL并获取此数据(仅网站和应用程序)。 Is it ok to make a 60+ character password that the app can send with the request that the server accepts before data is sent, or is this breakable?
可以发送一个60字符以上的密码,以使应用程序可以在发送数据之前与服务器接受的请求一起发送,还是可以破解?
I dont want to use OAuth because it's overkill as only the app and the site are going to communicate. 我不想使用OAuth,因为OAuth过于强大,因为只有应用程序和网站才能进行通信。 Please provide me with a few solutions, thanks!
请为我提供一些解决方案,谢谢!
您可以使用HTTPS传输数据。但是,您需要使用SSL证书。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.