Solved

Web Api 2 and Formless Client Login?

Posted on 2014-04-18
2
493 Views
Last Modified: 2014-04-24
Q. How does login security work for a client accessing Web Api 2 service without using a login form every time ?

Q. Which authentication works best with SSL?

Q. Which authentication works best without SSL?

I'm working on a AngularJS client which should:
1. Remember the first login
2. Automatically login to the Web Api 2 service
3. Demand login if the password expires.
0
Comment
Question by:WorknHardr
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 52

Accepted Solution

by:
Scott Fell,  EE MVE earned 500 total points
ID: 40010485
I personally prefer the "traditional" log in.  I am turned off when I do this and the app is asking for info/events I don't want to share.  

In any case, each social site will have their own way of doing things.  For google plus you can start here http://googleplusplatform.blogspot.com/2013/02/google-plus-sign-in.html.

Your authentication still needs to be done serverside and not client side.  Otherwise, it is easy to bypass and you are exposing data that you shouldn't be.   I wish I could help you more on the .NET side, I don't work with it.  There are libraries for this in each langauge that can make your life easier. http://msdn.microsoft.com/en-us/magazine/dn198238.aspx
0
 

Author Closing Comment

by:WorknHardr
ID: 40021190
Thx
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Nothing in an HTTP request can be trusted, including HTTP headers and form data.  A form token is a tool that can be used to guard against request forgeries (CSRF).  This article shows an improved approach to form tokens, making it more difficult to…
This article demonstrates how to create a simple responsive confirmation dialog with Ok and Cancel buttons using HTML, CSS, jQuery and Promises
The viewer will learn the basics of jQuery, including how to invoke it on a web page. Reference your jQuery libraries: (CODE) Include your new external js/jQuery file: (CODE) Write your first lines of code to setup your site for jQuery.: (CODE)
The viewer will learn the basics of jQuery including how to code hide show and toggles. Reference your jQuery libraries: (CODE) Include your new external js/jQuery file: (CODE) Write your first lines of code to setup your site for jQuery…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question