How can I make sure that only my iphone app is allowed to use the app app to send and receive data? I should probably use a secret key, but I don't know how to do this. Can I just use post / get to send my static key over https? Or do I need to use a dynamic secret key algorithm?
Any help would be appreciated! Bjorn
Assuming you can keep a secret in your iPhone app from what you need, you need HMAC . For each request you make, pass the request text to a function, such as HMAC-SHA1, with the private key as the key and add the result to the request. When the server receives the request, perform the same operation and verify that the HMACs match.
I'm not quite sure what you are trying to accomplish.
But sharing the secrets or API keys inside your iPhone application is usually a bad idea.
AppEngine. ( JSON) - AppEngine, ? , AppEngine iPhone-.
, .
SSL- -, , , .
SSL , , , .
, . , - - . , , , .
, wsdl , .
SSL ceritifcate RapidSSL $17 , .
Source: https://habr.com/ru/post/1732660/More articles:Google Test and Visual Studio 2010 RC - c ++Java and thermal printer - javaPerformance bottleneck - Linq to SQL or database - how do I say? - performanceНеправильно ли прервать c-строку с 0 вместо "\ 0"? - cOutOfMemory error while trying to retrieve a large jar using ZipFileSet - javaUnexpected output Prolog script - prologHow to make links load or update in a web browser in android? - androidHelp with basic keys and unique constraints - sqlHow do we have a unit testing philosophy? - unit-testingMySQL: is there something like an internal record identifier for each record in a MySQL table? - mysqlAll Articles