IMPORTANT: Per accedir als fitxer de subversion: http://acacha.org/svn (sense password). Poc a poc s'aniran migrant els enllaços. Encara però funciona el subversion de la farga però no se sap fins quan... (usuari: prova i la paraula de pas 123456)

http://upload.wikimedia.org/wikipedia/commons/4/4f/Nonce-cnonce-uml.svg

APIs

  1. REDIRECT Token-Based_Authentication#Introducci.C3.B3

Vegeu també

Enllaços externs

  • Designing a Secure REST (Web) API without OAuth': http://www.thebuzzmedia.com/designing-a-secure-rest-api-without-oauth-authentication by Riyad Kalla covers the best way to secure you rest api. But as this article aims at very beginners I am not going with any complex model. So for now we can go with generating a random api key for every user. The user is identified by the api key and all the actions can be performed only on the resources belongs to him.