I need to use some API by my own mobile app. But I want lock access from 3d party mobile apps. How can I do this?
I talking not about authorization. I just don't want, that somebody write application which use API on my website.
Asked
Active
Viewed 617 times
-2
-
1What have you tried? What OS are you developing for? If you are going to ask a question at least put some effort. – Josue Espinosa Dec 04 '13 at 01:17
-
iOS, Android. I don't think that OS is important in this question. – Roman Shamritskiy Dec 04 '13 at 01:22
1 Answers
2
You can't reliably block 3rd party clients without machine to machine authentication.
I suggest using an API key as a general approach. This question explains how it might be implemented at a high level
However:
What's best for you depends entirely on the framework that you're using, it's always best to use an existing framework for security.
Community
- 1
- 1
actual_kangaroo
- 5,971
- 2
- 31
- 45