asked on Sentry 2 authentication for REST API with Laravel 4
I'm trying to create a mobile application which uses REST services to load and manage data (hotel information).
I'm using Laravel 4 as the framework for my REST services, along with Sentry 2 module for authentication.
As far as the backend is concerned, I've set up the models, migrations, routes, etc. with Laravel.
However, despite extensive searching, I'm unable to find any good tutorials on making the REST services secure with Sentry 2.
How do I ensure that only authorized users can call the web services?
I'm using Laravel 4 as the framework for my REST services, along with Sentry 2 module for authentication.
As far as the backend is concerned, I've set up the models, migrations, routes, etc. with Laravel.
However, despite extensive searching, I'm unable to find any good tutorials on making the REST services secure with Sentry 2.
How do I ensure that only authorized users can call the web services?
PHPWeb FrameworksWeb Services
Last Comment
Ray Paseur
ASKER
Hey Ray_Paseur,
Thanks for getting back to me. Yes, I've read that article.
I've already installed Sentry 2 into my project.
The problem is that their documentation is written with the assumption that we're building a web application, with a login form and everything. In this case, Sentry uses cookies to store session data, and authenticate users.
Since I'll be accessing the web services from a mobile application, I need to know how to implement Sentry's authentication process for web services rather than for "views".
I hope I was able to explain the problem adequately. Please let me know if you have any questions.
best,
Shishir
Thanks for getting back to me. Yes, I've read that article.
I've already installed Sentry 2 into my project.
The problem is that their documentation is written with the assumption that we're building a web application, with a login form and everything. In this case, Sentry uses cookies to store session data, and authenticate users.
Since I'll be accessing the web services from a mobile application, I need to know how to implement Sentry's authentication process for web services rather than for "views".
I hope I was able to explain the problem adequately. Please let me know if you have any questions.
best,
Shishir
accessing the web services from a mobile applicationCan you please tell us more about the mobile application?
ASKER
Sure. Here is a basic description of the app.
The database contains data about various hotels, and the events they may be hosting.
The app allows logged in users to view hotels and their events. They can mark events as 'attending'/'not attending'.
The data and actions are accessible as rest api. i want to enable user authentication on these api.
There is also an admin panel which allows certain users to manage hotels and events.
This admin panel is separate from the mobile app.
Both, the app and the admin panel use the REST api to perform the various tasks.
The database contains data about various hotels, and the events they may be hosting.
The app allows logged in users to view hotels and their events. They can mark events as 'attending'/'not attending'.
The data and actions are accessible as rest api. i want to enable user authentication on these api.
There is also an admin panel which allows certain users to manage hotels and events.
This admin panel is separate from the mobile app.
Both, the app and the admin panel use the REST api to perform the various tasks.
Where does the mobile app run? Is it on the iPhone/Android? If so, it would make sense for the app to respond (at least in part) like a well-behaved web browser, accepting and returning cookies, following redirects, etc.
ASKER
Yes. the app will be compiled for Android and iPhone devices.
All services will be called using ajax.
All services will be called using ajax.
ASKER
The app will be packaged using PhoneGap.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
I found an alternate solution to my problem, which has been described in my comment. This solution is more "stable" than the original solution that I was looking for, hence, I've marked my comment as a possible solution so that others may go through it.
Thanks. I think an article describing the process and showing how you did this would be great! Best regards, ~Ray
https://cartalyst.com/manual/sentry/installation/laravel-4