spring mvc - Authenticate native mobile app using a REST API -
like facebook application, enter credentials when open application first time. after that, you're automatically signed in every time open app. how 1 accomplish this?
there's commom line in auto-login implementations
- upon initial login, token received , stored on client side
- upon subsequent visits, if token available on client side, server resolves identity , logs in automatically
now concrete implementation variations can numerous. token can session id (encripted or not), oauth token, custom token, username , password should avoided. storing token can on within browser cookie, browser local storage, can have server counter-part. security major concern. topic can read more here https://softwareengineering.stackexchange.com/questions/200511/how-to-securely-implement-auto-login
you have interesting explanation of how stackoverflow https://meta.stackexchange.com/questions/64260/how-does-sos-new-auto-login-feature-work.
Comments
Post a Comment