简体繁体中英

Securing REST API in PHP

原文 2021-03-09 12:12:46 4 1 php/ api/ jwt/ basic-authentication

All my database related files are in config folder (fetch, post, update, delete). and I'm using ajax on the client side to use that data. my question is how can I secure my API files. I've studded about JWT and I think it is only for user login and signup. I want that when someone opens my api url like: 'http://localhost/config/getPosts.php' they should be authenticated before they can see the posts. I've also used basic auth but it is not secure according to my research.

1 answers

What you want to do is to create a way to check if the user is currently logged in with JWT (Usually done with a middleware) and if not return a 401 error. Then assign the middleware to those routes so you protect those routes with the JWT check.

PHP - Securing a Private Rest API and AJAX

Securing a PHP REST Service

Securing a REST API written in PHP with OAuth2 client credentials flow

Securing php api

Securing public API with PHP

Securing an api PHP/JQUERY?

Securing access to PHP API

Securing a REST API and Slim Framework

Securing Rest API with Basic Authentication

Securing PHP API Based on Device

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question PHP - Securing a Private Rest API and AJAX Securing a PHP REST Service Securing a REST API written in PHP with OAuth2 client credentials flow Securing php api Securing public API with PHP Securing an api PHP/JQUERY? Securing access to PHP API Securing a REST API and Slim Framework Securing Rest API with Basic Authentication Securing PHP API Based on Device

Related Tags

Securing REST API in PHP

Question

1 answers

solution1 0 2021-03-09 13:13:24

solution1
0 2021-03-09 13:13:24