Authenticating your RESTful API

Authenticating users: use OAuth 2 and/or JSON Web Tokens with the Authorization HTTP header

  • OAuth 2 (which can be combined with OpenID Connect)
  • JSON Web Tokens
Authorization: Bearer <token>

Why you should not send your token as a GET parameter ?

GET /my-resource?access_token=123456

Authenticating applications: use API keys

--

--

--

Développeur web et passionné de finances personnelles

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

CS373 Spring 2022: John Powers

Journey to migrate TB’s of data from on-premise Oracle — >DynamoDB

Building a Go Web App from Scratch to Deploying on Google Cloud | Part #3a — Deploying our Go App…

Struct vs Class: Difference between Struct and Class in Swift

CICD your Tableau Dashboard with Github Actions

Introduction to Concurrency in Python

How to add custom domain to Google Cloud Function

Lombok: Unhinge Yourself From Boilerplate Code

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Guillaume Viguier-Just

Guillaume Viguier-Just

Développeur web et passionné de finances personnelles

More from Medium

API, REST API and RESTful API

Tracking queries with knex-mock — mocking database transactions with multiple queries

Adding Controller Class in ASP.NET

A brief introduction to web services