Best practices for security implementation in RESTful api services using WCF/WebApi
-
Hi Guys, I am trying to create a RESTful api service which will be consume same or cross platform and it would be easy to access from php,jsp others clients. For now what would be the best way to implements the authentication. I am a bit confused should I go for OAuth 2.0 or WIF or something else. I need your help guys and I would be really so glad for your any suggestion, examples, code snippets, etc.... Waiting for your response, have a great day..................
Thanks Md. Marufuzzaman
I will not say I have failed 1000 times; I will say that I have discovered 1000 ways that can cause failure – Thomas Edison.
-
Hi Guys, I am trying to create a RESTful api service which will be consume same or cross platform and it would be easy to access from php,jsp others clients. For now what would be the best way to implements the authentication. I am a bit confused should I go for OAuth 2.0 or WIF or something else. I need your help guys and I would be really so glad for your any suggestion, examples, code snippets, etc.... Waiting for your response, have a great day..................
Thanks Md. Marufuzzaman
I will not say I have failed 1000 times; I will say that I have discovered 1000 ways that can cause failure – Thomas Edison.
-
Md. Marufuzzaman wrote:
For now what would be the best way to implements the security.
Not "security", but "authentication" :)
Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^] They hate us for our freedom![^]
Thanks, But I could not found your suggestions :(.
Thanks Md. Marufuzzaman
I will not say I have failed 1000 times; I will say that I have discovered 1000 ways that can cause failure – Thomas Edison.
-
Thanks, But I could not found your suggestions :(.
Thanks Md. Marufuzzaman
I will not say I have failed 1000 times; I will say that I have discovered 1000 ways that can cause failure – Thomas Edison.
Documentation[^] :)
Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^] They hate us for our freedom![^]
-
Documentation[^] :)
Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^] They hate us for our freedom![^]
Hi, Thanks for your response; well I go thru that before and my opinion something like a general approach nothing but using ssl and data encryption cause when you transmit over the wire data could be readable. What do you think on that.
Thanks Md. Marufuzzaman
I will not say I have failed 1000 times; I will say that I have discovered 1000 ways that can cause failure – Thomas Edison.
-
Hi, Thanks for your response; well I go thru that before and my opinion something like a general approach nothing but using ssl and data encryption cause when you transmit over the wire data could be readable. What do you think on that.
Thanks Md. Marufuzzaman
I will not say I have failed 1000 times; I will say that I have discovered 1000 ways that can cause failure – Thomas Edison.
Md. Marufuzzaman wrote:
something like a general approach nothing but using ssl and data encryption cause when you transmit over the wire data could be readable. What do you think on that.
SSL is always a good starting-point, prevents people from eavesdropping by encrypting anything that's communicated.
Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^] They hate us for our freedom![^]