Android communicates with the backend. Whether you use https, or not, you don't have to consider api security authentication mechanisms such as access token and sign.

now that https can guarantee the security of passing api parameters, it is not necessary to sign the parameters, only userid is needed for identity verification, and there is no need to generate a new access token to bind to the account at the backend.

Mar.05,2021

this kind of App dare not use, dare not use, good-bye!

is access token used only for authentication?
can https authenticate?


access token is definitely needed, and it needs to be changed frequently, such as changing every few days or saving updates every 24 hours, in order to better improve security

.
MySQL Query : SELECT * FROM `codeshelper`.`v9_news` WHERE status=99 AND catid='6' ORDER BY rand() LIMIT 5
MySQL Error : Disk full (/tmp/#sql-temptable-64f5-1eb74e1-2643.MAI); waiting for someone to free some space... (errno: 28 "No space left on device")
MySQL Errno : 1021
Message : Disk full (/tmp/#sql-temptable-64f5-1eb74e1-2643.MAI); waiting for someone to free some space... (errno: 28 "No space left on device")
Need Help?