I'm about to build an iOS e-commerce app. This app will query the prestashop webservice api of an existing prestashop installation.
I've been playing with the prestashop webservice and it seems to work fairly good so far except for lacking of security: there's no token-like architecture that I can use to track authentication of users. Is it me missing something or Prestashop DOES lack this feature?
What would be your approach? Is there any module that I can install and solve this problem? I really really would like to limit as much as possible coding extensions for prestashop by hand.
Thanks
Prestashop web service is secured with an authentication key :
http://doc.prestashop.com/display/PS14/Chapter+1+-+Creating+Access+to+Back+Office
Related
I am writing a rest api using django rest framework. I store my data in Cassandra. I am using django-cassandra-engine as my backend. My api works fine, but now I need add LDAP authentication.
I intend to use this package called django-auth-ldap. From what I understand django-cassandra-engine doesn't support django-auth module on which django-auth-ldap rely on?
I have never worked with Cassandra before, and I consider myself a Django newbie.
Can someone be so kind and give me few hints how can I do this? Much appreciated.
Thanks in advance!
I'm trying to get Google authentication working against Azure App Service from a web site and later hopefully from Cordova. There is a lot of information related to the old Azure Mobile Services, but not much on App Services. Microsoft did exclude tutorials on how to do it from web.
I included <script src="http://ajax.aspnetcdn.com/ajax/mobileservices/MobileServices.Web-1.2.7.min.js"></script>, don't know if this is still current?
Any pointers on how to handle authentication are appreciated!
This is possible using the Authentication/Authorization feature. Refer this article for more information: https://azure.microsoft.com/en-in/blog/announcing-app-service-authentication-authorization/
https://azure.microsoft.com/en-in/documentation/articles/app-service-mobile-how-to-configure-google-authentication/
AFAIK, there is no native support for Cordova in Azure App Service Mobile App. You will have to implement this yourself.
We have an in-house Single Sign On server, built on IdentityServer2 and we use it to authenticate many different web products. Some of these products are in .NET, some in ColdFusion and we are adding another in Ruby on Rails.
I am having a great deal of difficulty, though, in finding information on connecting to any generic OAuth2 provider. All of the information seems to revolve around Omniauth and the specific provider gems that most people connect to. These, however, will not help me.
I just need someone to point me in the right direction. I don't care if it's using Omniauth, Rack or anything else. I just need something that will provide some sort of instructions on how to get this working in Rails.
Thanks in advance for your help.
There really isn't a generic way to do this as it all depends on the SSO server setup. I ended up just building the auth string according to what the server was asking for and then using the JWT token to process the token it gave back.
The only thing I can say is that if you run into this issue, either check with the folks managing the SSO server to see what the request URL should contain or check the documentation of the SSO software if you are doing it yourself.
You can use doorkeeper gem which is a OAuth 2 provider for Rails and Grape.You can go
https://github.com/doorkeeper-gem/doorkeeper
hope that helps you.
I want to build a RESTful webservice api handle phonegap application request.
I am familiar with Python and Django.
Restful webservice is a social network like Twitter, required to use Mongodb. Everyone can post status photo from mobile app to server and can follow anyone. I have read about django-tastypie to build restful api but I want to use mongodb. About mongodb driver for django I have read mongoengein.
What about commbo django + django-tastypie + mongoengien? Is is suitable for me?
There is this https://github.com/mitar/django-tastypie-mongoengine . Weather the tastypie model is the right choice depends on many factors, but it's ability to create a standards compliant REST that works with backbone.js will continue to encourage use. It's pretty nice to extend as well - taking alot of inspiration from the way you define ModelAdmins in django. Not having to come up with your own authentication system or integrate oauth by hand is appealing (but sometimes an existing authentication is required if you are building this into an old application).
I have tried to implement basic API endpoints with plain mongoengine and ran into many serialization issues (ObjectIDs and many other fields) and inability to get relations or easily or control the inclusion and detail of embedded documents, so it is worth at least putting some time into evaluation and tinkering with Tastypie. Like the mongoengine django admin - you wont find 100% seamless recreation of the SQL version but rolling your own solution here is a high level of effort.
I have been working on a PHP project recently and I have created an API that will be consumed by mobile clients. I am using CodeIgniter as it provides a nice restful interface out of the box. I am unexperienced in PHP development and especially securing PHP web services. I was hoping to solicit some information about how I should go about implementing user authentication with my API. The information is not super sensitive but I do need clients to authenticate with the service.
Since my clients are mobile devices I'm uncertain how to go about implementing a membership provider model using CI since I won't have the luxury of a session (or do I?). Will my users merely send their credentials each time a request is made using SSL? Can someone provide me with some direction or documentation that might help?
Thanks!
Use Phil Sturgeon's Rest API. He's already built these things in.
http://philsturgeon.co.uk/blog/2009/06/REST-implementation-for-CodeIgniter