News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Lorna Mitchell's Blog:
Auth Mechanisms for Web Services
May 01, 2009 @ 14:28:52

In this new post to her blog Lorna Mitchell looks at authentication in web services with a few questions for you to consider as you make your development plans.

Quite a lot of services don't require any authentication at all, similar to quite a lot of the web. In either setting, the information is there for users to consume when they want. However the difference comes when services start doing more than making data available. If changes can be effected by the service, then we need to identify who is requesting the change.

She notes that one popular method is the tried-and-true username and password combination. This simple (and familiar) technique can even make the load lighter on your application, reducing the complexity of the authorization process. She suggests using a token to identify your users once they've authenticated, providing a simple and secure method for user tracking.

With this information being independent and just used to verify the user, there is also the option of storing this in an alternative, faster, mechanism such as memcache.
0 comments voice your opinion now!
autentication mechanism webservice token suggestion


blog comments powered by Disqus

Similar Posts

Reddit.com: Should I be doing just about everything using REST?

Stefan Koopmanschap's Blog: Contributing to Open Source

Zend Developer Zone: Integrating PHP with System i using Web Services

Pádraic Brady: Stateful vs Stateless CSRF Defences: Know The Difference

Dave Marshall's Blog: Landing a PHP job Part 1: Technical Knowledge and Skills


Community Events

Don't see your event here?
Let us know!


voicesoftheelephpant part2 performance conference library opinion podcast application community series introduction laravel interview release example framework configure api php7 symfony2

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework