When token is used as the user's authorization and Authentication mode, if you access a Web page in the APP, how do you obtain the user's permissions on the Web page? The APP carries a token to confirm its identity when accessing the APP. Then, the APP accesses an HTML page provided by the same backend. How can this page be accessed?
Token
In user authorization and Authentication mode, if you access a Web page in an APP, how do you obtain the user's permissions on a Web page?
The APP carries a token to confirm the identity when accessing the APP. Then, when accessing an HTML page provided by the same backend in the APP, How can I obtain the user identity of the current APP on the page? If you directly attachToken
Will it be exposed if the network is sniffed?
Reply content:
In useToken
In user authorization and Authentication mode, if you access a Web page in an APP, how do you obtain the user's permissions on a Web page?
The APP carries a token to confirm the identity when accessing the APP. Then, when accessing an HTML page provided by the same backend in the APP, How can I obtain the user identity of the current APP on the page? If you directly attachToken
Will it be exposed if the network is sniffed?
Add the Problem description to the subject ~~
1. the token is designed to make it more difficult to use it after being sniffed.
2. Full-site https
Use session or js to call the app native method to obtain the user's permissions.