asp.net - Proper way to authenticate with a web service from Android -

-

so have asp.net mvc 4 web app behaves pretty web service. client sends request, web service returns json object. i'm point in have authenticate users android app. proper way on client side since no longer have web browser store cookies me authenticate server. ssl taken care of.

have been thinking of several straight forward ways authenticate i'm concerned having security vulnerability might not aware of.

ok me store user credentials (username , password) in sqlite database on android phone app installed, , send credentials along every request server authenticate? (i'm thinking of hashing password before storing in database, of course).

approach not safe? how other apps authenticate services: ebay, facebook , such?

data saved in private storage relatively secure (on non rooted device @ least). include :

if want better integration account manager (e.g. have account listed in device's settings), can write accountauthenticator. see creating custom account type or write own android authenticator. not sure ebay , facebook, that's firefox sync , evernote example do.


Comments

Post a Comment

Popular posts from this blog

Unable to remove the www from url on https using .htaccess -

-
i want remove www site url. ie. https://www.domainname.com.au https://domainname.com.au . i have tried various .htacces code nothing work me. here present code remove www http not work https. rewriteengine on rewritebase / rewritecond %{http_host} ^www\.(.*)$ [nc] rewriterule ^/(.*)$ http://%1/$1 [r=301,l] rewritecond %{https} off rewriterule ^(.*)$ https://domainname.com.au/$1 [r=301,l] rewriterule ^code-of-conducts/(.*)/$ code-of-conducts.php?type=$1 rewriterule ^parents/post-a-job/(.*)/edit/$ parents/post-a-job.php?action=edit&id=$1 rewriterule ^parents/post-a-job/(.*)/$ parents/post-a-job.php?job_type=$1 rewriterule ^parents/open-jobs/(.*)/delete/$ parents/open-jobs.php?action=delete&id=$1 rewriterule ^parent-profile/(.*)/$ parent-profile.php?id=$1 rewriterule ^parents/job-details/(.*)$ parents/job-details.php?applied_id=$1 rewriterule ^sitterprofile/(.*)/$ sitterprofile.php?id=$1 rewriterule ^sitter/job-board/state/(.*)/page/(.*)/$ sitter/job-board.ph...
Read more