Ignore:
Timestamp:
Mar 27, 2012, 2:43:52 PM (9 years ago)
Author:
work@…
Message:
  • adding initial version of the API controller (which external applications can use to interface with gscf)
File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/grails-app/views/api/index.gsp

    r2182 r2183  
    1313    designed to be called only once (or when sessions are out of sync) as HTTP BASIC authentication is not really secure (if someone
    1414    is able to sniff your traffic, the authentication md5 hash is easily stolen).<br/>
     15    Every subsequent request the client does, needs to contain a validation MD5 hash, which is a MD5 sum of the concatenation of the device token,
     16    the request sequence and a shared secret (e.g. <i>md5sum( token + sequence + shared secret )</i>).
    1517    <i>Note that in order to be able to successfully authenticate or use the API in general, the user should have the ROLE_CLIENT assigned!</i>
    1618
Note: See TracChangeset for help on using the changeset viewer.