How to send additional data with GET,POST,PUT,DELETE?

Question

For rest security I want to send an application key and a hash with every request. Actually I would like to have it as url parameter like

 DELETE api.project.com/model/1?client=12345?hash=abcdef

Do you see any problem with this? Is there another way to send this data?

score 2 · Accepted Answer · edited May 23 '17 at 12:21

2

You should use Authorization HTTP header in request. If you send it as a query parameter it can be cached in many places i.e. user's browser, http caching proxy which may lead to leak of user's credentials.

On SO: Custom HTTP Authorization Header

edited May 23 '17 at 12:21

Community

1
1

answered Oct 09 '13 at 09:39

ragnor

2,498
1
22
25

How to send additional data with GET,POST,PUT,DELETE?

1 Answers1