#1
  1. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Dec 2007
    Posts
    90
    Rep Power
    11

    Sending username/password via API


    I read about authentication via API. My question was: Should I hash password on phone before I send it to server. Answers were different but I found that if I send username/password via HTTPS that I don't need to hash it.
    Does it mean that mobile developer should POST to url: https://www.domain.com when he is posting data or there is some special way of posting it to HTTPS from mobile?
    Last edited by dada1; October 25th, 2015 at 08:31 AM.
  2. #2
  3. Lord of the Dance
    Devshed Specialist (4000 - 4499 posts)

    Join Date
    Oct 2003
    Posts
    4,131
    Rep Power
    2011
    If you want to have a secure connection between the client and the server, then HTTPS is required.

    POST is the same whether you use HTTP or HTTPS.
    HTTPS just say that whatever data you send using POST, it will go through an "secure channel".
  4. #3
  5. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Dec 2007
    Posts
    90
    Rep Power
    11
    Great, thank you

IMN logo majestic logo threadwatch logo seochat tools logo