javascript - How To Connect Specific URL of Api With Only 1 Mobile App
问题描述
I have an API and it has user register system.
The api is used by a mobile app. ( Most of URL's are not allowed for anonymous. Token key is used for all. Excluding register URL. )
And the register url has to be open. I mean that the url has no token key to be authorized. Because there is no authorized user. It is register level.
Of course, the register url open to attack. How can we prevent this situation ?
解决方案
您有很多选择,具体取决于您的威胁模型以及您试图保护端点免受的威胁。这里是其中的一些:
推荐阅读
- shell - 壳中的 Gearman 工人像僵尸一样挂起
- forms - Symfony:CollectionType 中的 OrderBy
- c++ - 通过主机对象传递设备指针
- codeigniter - Sqlsrv 与 codeigniter 3.1.11 错误连接
- c# - 如何使用代码获取单个 azure 用户的所有属性?
- python - 如何对各种 django 模型进行聚合排序?
- xcode - Flutter XCode-build 错误无法构建模块'firebase_core'
- javascript - 为什么在 Next.js 中未定义解构的环境变量?
- python - py 计算矩阵中列之间的余弦相似度(仅考虑共享行)
- sql-server - 将带有特殊代码 µg 的 CSV 文件导入 SQL Server