javascript - How to verify identity on server when using an external login -

-

i have explain scenario here: want single authentication authority our webapps. sit on server a (for auth). 1 holds user's emails, passwords, etc. stuff should not shared.

then have server b, on app hosted. able write javascript authentication , login part, works this:

b loads login dialog code user logs dialog has session (cookie) user b asks javascript of user details

in browser, b can logged in user a because server code of a has access session, ajax call works , can confident deliver.

now, app on b needs load privileged data own database, should visible right user. far, browser has knowledge if user logged in @ all, , is.

so sending user id via ajax server of b ludicrously unsafe , faked. since session, cookie , user data ever known a, b needs have way verify if access privileged data legit.

and there i'm bit stumped in how can design api on a support server-to-server verification ensure b can check it's right user , has right access data.

maybe it's trivial solution, open input.


Comments

Post a Comment

Popular posts from this blog

google api - Incomplete response from Gmail API threads.list -

-
i plot number of emails in inbox on time using gmail api , i'm seeing lot of drop-outs, whatever reason i'm getting incomplete count of messages @ single time points. my plots here: https://plot.ly/~tdsmith/2 -- "drop-outs" i'm complaining trace shoots downwards , recovers previous level @ next timepoint. the code i'm using count emails here: https://github.com/tdsmith/gmail-plotly/blob/master/gmail-plotly.py#l47-l64 what can diagnose these faults?
Read more

Installing Android SQLite Asset Helper -

-
i need use ready made database. search solution on internet did not work until decided use mentioned library found here . however, found hard use library in installation procedures shallow beginners. i appreciate step step procedure on how use android studio. in struggle tried copying sources main/libs , adding line gradle did not work. use api 19 if helps. update here build.gradle // top-level build file can add configuration options common sub-projects/modules. buildscript { repositories { mavencentral() } dependencies { classpath 'com.android.tools.build:gradle:0.11.+' compile 'com.readystatesoftware.sqliteasset:sqliteassethelper:+' // note: not place application dependencies here; belong // in individual module build.gradle files } } allprojects { repositories { mavencentral() } } trying compile project error error:(9, 0) no signature of method: org.gradle.api.internal.artifacts
Read more

Qt Creator - Searching files with Locator including folder -

-
one quick question qtcreator : know possible use locator open files using "ctrl-k" shortcut. however, possible search files including locations? for example, let's want locate file named "main.cpp" in folder named "myfolder" , have lots of other main.cpp files. what should type locator in order open ? just type myfolder/main.cpp in locator
Read more