使用会话ID进行肥皂认证
[英]Soap Authentication using Session IDs
问题描述
I am building an API using Zend Soap and there has to be some sort of authentication to actually use the API. 
我正在使用Zend Soap构建API,并且必须进行某种身份验证才能实际使用API。 Also I don't want the user credentials to be sent over the net each time a request is done. 另外,我不希望每次请求完成时都通过网络发送用户凭据。
Is it ok to do an post-authentication by using sessionids & something like this: 是否可以通过使用sessionids和类似的东西来进行后认证:
- User authenticates himself once via SOAP and gets his serverside session id in return. 用户通过SOAP进行一次身份验证,并获得其服务器端会话ID作为回报。
- After that the User has to send his sessionid within the SOAP Header each time he requests something. 此后,用户每次请求时都必须在SOAP标头中发送其sessionid。
- When I get an header containing a sessionid, I check the id against my sessionid_db and perform the request if everything seems alright. 当我获得包含sessionid的标头时,我对照sessionid_db检查ID并在一切正常的情况下执行请求。
1 个解决方案
解决方案1
1 已采纳 2012-04-14 21:35:21
Look into oauth? 看看oauth? zend_oauth zend_oauth
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
如何使用会话ID进行身份验证 - how to use session ids for authentication purpose
如何使用SOAP进行身份验证? - How to do authentication using SOAP?
如何使用SOAP Header和PHP进行身份验证? - How to do authentication using SOAP Header and PHP?
Soap身份验证标头和使用PHP的请求 - Soap authentication header and request using PHP
使用会话变量进行身份验证的替代方法 - Alternative to using Session Variables for Authentication
simplesamlphp IDP使用现有会话启动的身份验证 - simplesamlphp IDP Initiated authentication using existing session
PHP使用Cookie在数据库中存储当前会话ID - PHP Storing Current Session IDs in Database using Cookies
使用 Laravel 会话和表格进行 Wordpress 身份验证 - Wordpress authentication with using Laravel Session and tables
使用SOAP的“所有身份验证必须通过SSL进行的php” - php “All authentication must be done over SSL” using SOAP
会话,Cookie和ID - Session, cookies and ids
相关标签