stackoom
  简体   繁体   中英

What is the best practice to return login credentials in a rest API response?

 原文  2016-07-29 06:14:56       java/ web-services/ api/ rest/ security

Question

In a user registration API if i need to register same user on other third parties servers like Wowza, open-fire. When register on third party servers we create password using some algorithms, in that case need to return login credentials in API response so client side directly user there API's.

According to me:

  1. Return credentials in API response.
  2. Registration on third parties servers part move to client side.

Please suggest which one I need to follow.

If any one have batter solution then please suggest.

1 answers

solution1
 1  2016-07-29 06:54:35

As per my understanding(strictly my point of view) returning credentials like password etc either in encrypted or plain text to client side is not at all expected.
If need to register on third party domain we may use OAuth like framework which would do the job for the manual client side rendering

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question REST API client implementation, what is the best practice? What is the best practice for multiple REST API calls with the same parameters Best practice for spring-boot REST response Best Practice to Build a Java SDK for a REST API What is the best way to return the uniform response for each API in Spring Boot? What's the best practice for manipulating API response from Java using JavaScript? Spring Security 5 / Login / REST API Accessibility / Bad Credentials even if they are right? Best way to send 3rd party credentials via REST API What is the best way to keep/validate user login credentials in our application Java 7 API design best practice - return Array or return Collection
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM