Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Jwt works in this case... You issue a key to a known user.. In this case you create an API user (doesn't have to exist in a backing store) and set the expiration to a super short duration and validate it on the other end... You can also use this for API testing in unit/integration tests


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: