简体繁体中英

How to prevent bots using REST API calls to register new users from an mobile app?

原文 2013-10-06 11:13:29 9 1 django/ security/ rest/ django-registration/ tastypie

I want to write a backend application with REST API in django-tastypie for mobile apps.

If i am sending POST data (user-object) to eg http://localhost:8000/api/v1/register/ from within my mobile app to register a new user, everybody who knows the url can register new users and blow my database. How do i prevent this? Is using a REST-API for user registration a wrong approach? Can someone point me to in the right direction? I dont want to use OAuth for logging in my users.

1 answers

everything depends on how securely you can store data on the mobile application...

if you are pretty sure that you can have something securely stored on the mobile phones with your app, the simplest solution is to set-up certificate authentication on your frontend server, in such a case every connection without proper certificate will fail

this is quite simple solution that does not require any changes to your backend code, only small change to clients (to use certificate)

How to register users using django-rest-framework and angularJS?

How to prevent authenticated users from making direct API request (Django rest framework)

How to register users in Django REST framework?

How to push notification in django rest api for implementing it in mobile app?

How can I authenticate users via social account from mobile app using retrofit2?

Is there a way to register new users with Django registration templates that would prevent them from logging in until admin has manually reviewed?

Facebook integration for mobile app with a backend REST API

Track REST API calls using google analytics/

How to allow users to select groups when register in django rest framework?

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to register users using django-rest-framework and angularJS? How to prevent authenticated users from making direct API request (Django rest framework) How to register users in Django REST framework? How to push notification in django rest api for implementing it in mobile app? Register users using django oscar API How can I authenticate users via social account from mobile app using retrofit2? Is there a way to register new users with Django registration templates that would prevent them from logging in until admin has manually reviewed? Facebook integration for mobile app with a backend REST API Track REST API calls using google analytics/ How to allow users to select groups when register in django rest framework?

Related Tags

How to prevent bots using REST API calls to register new users from an mobile app?

Question

1 answers

solution1 0 2016-06-13 23:11:17

solution1
0 2016-06-13 23:11:17