Menu
Forums
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Trending
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Upgrades
Log in
Register
What's new
Search
Search
Search titles only
By:
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Menu
Log in
Register
Navigation
Install the app
Install
More options
Contact us
Close Menu
Forums
Software Development
Programming
Development
The Insane Barbershop
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="SystemSequence" data-source="post: 420493" data-attributes="member: 66293"><p>Been sometime since a new update on this due to studies. </p><p></p><p>There will be an update before the end of 2017 with updated security to access the generic API, will use headers to confirm credentials to access it, otherwise it will be closed for use, I realized late in this project that it's not a good production api due to the lack of security, by that I mean the querys in the app/website is on the client side and can be manipulated into any form. You will still be able to do this for test if you'd like to but will require credentials in the header.</p><p></p><p>For the production usage there will be schemas for what you can do like any api. (<a href="http://localhost/selectUser?id=2" target="_blank">http://localhost/selectUser?id=2</a>) and will do parameterized querys to avoid the most basic of hacks. </p><p>This requires quite a big recode but the project aint that big. </p><p></p><p>To add, the api works well with databases that has a JDBC like, </p><p>mySql, postgreSql, MsSql, Hibernate, Oracle, Sun, MongoDb, SqlLite and more.</p></blockquote><p></p>
[QUOTE="SystemSequence, post: 420493, member: 66293"] Been sometime since a new update on this due to studies. There will be an update before the end of 2017 with updated security to access the generic API, will use headers to confirm credentials to access it, otherwise it will be closed for use, I realized late in this project that it's not a good production api due to the lack of security, by that I mean the querys in the app/website is on the client side and can be manipulated into any form. You will still be able to do this for test if you'd like to but will require credentials in the header. For the production usage there will be schemas for what you can do like any api. ([URL]http://localhost/selectUser?id=2[/URL]) and will do parameterized querys to avoid the most basic of hacks. This requires quite a big recode but the project aint that big. To add, the api works well with databases that has a JDBC like, mySql, postgreSql, MsSql, Hibernate, Oracle, Sun, MongoDb, SqlLite and more. [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
Software Development
Programming
Development
The Insane Barbershop
Top