javascript - Best practice for communication between app and server when using PhoneGap/Cordova -
I am using ionic a Fongap project is basically a chat app, so I users to its servers But be able to register, login and send messages using the backend API. Naturally it is important to be safe, so I am thinking that APIs are the best way to communicate securely with endpoint, when an anergy and phonegap is used.
Ideally, it should not require server certification. Currently I have no money to buy one In previous projects, I used a method where each account should have an ID, and His ID was included in a hash, his ID was included, to be included with each request to ensure that the user could not make a request with any other ID, I do not know How safe is this method?
Any suggestion, suggestion or reading material will be really appreciated. I understand that this question seems subjective, so if possible answer on the basis of facts, security disclosure and any documents of the method.
I know the solution to all your needs and it is called.
How will your requirements from Firebase be fulfilled: 1. You are using Ionic
to build your hybrid app (you are cool!) And it means < Code> AngularJS Firebase has the perfect library called AngularFire
, which uses AngularJS
to interact with Firebus server.
-
You're a chat app, awesome! Fayrbej (Claps are) a lot of things that were saved by the need for users to register, super easy user Register Management (both auto and manual registration) in Fayrbej Fayrbej is syncing in real time between your app and database to your < / P>
-
Security! It's super important and Firebase has covered you here. It is easy to implement user-level security using some simple Jason format security rules. I will quote from the site "The security and security of your data is our top priority." Firebase requires 2048-bit SSL encryption for all data transfer and allows you to read and write granular access control and custom authentication.
All data are duplicated and backed up to many secure locations. "
-
It's free (to some level), I'm not sure)
-
Your original ID + hash safe solution is not right or not reliable at the same time. Firebase has covered you through simple entry and has also protected the safety of some closed sources along with the rules of reading / writing.
Comments
Post a Comment