Databases
StackOverflow2013
Postsdbo
POServer and SSL API Security
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POServer and SSL API Security
    primarykey
    data
    text
    <p>Currently I'm developing an REST API</p> <p>my API access are only between my server and my client server(B2B, business to business). example : myserverapi.com(My REST API Server) and myclientserver.com(My Client Server who access My API) *no 3rd connection/application</p> <p>we are implementing api_key(of course it a must), and domain name(so the client specific the domain name that he will access the api, so my server api will only accept from that)</p> <p>for myserverapi.com, how to only receive connection from myclientserver.com ? is only using <code>$_SERVER['REMOTE_ADDR']</code> ? Is that enough ? but after reading from a few place, that i can't use that because the IP may be wrong if it under proxy or loadbalancer farm. What's the solution ?</p> <p>and how if i installed SSL Certificate ? is i must change my code ? or just buy and install on the server side that automatically my api will be secure ?</p> <p>is openssl-verify function only the secure way to realy get know that the access are from specific server or not ? <a href="http://php.net/manual/en/function.openssl-verify.php" rel="nofollow">http://php.net/manual/en/function.openssl-verify.php</a> Is that mean i must change my code to encrypt and decrypt data like in this link <a href="http://3stepsbeyond.co.uk/2010/12/openssl-and-php-tutorial-part-two/" rel="nofollow">http://3stepsbeyond.co.uk/2010/12/openssl-and-php-tutorial-part-two/</a></p> <p>so basically i just want to make sure for myserverapi.com to only get access from myclientserver.com. and the myclientserver.com only accept data from myserverapi.com. how to do that ?</p> <p>I hope some one give me a good explain. </p> <p>Thank You</p>
    singulars
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PTQuestion
    1. USAhmad
    1. USAhmad
    plurals
    1. This table or related slice is empty.
    1. PL
      singulars
      1. LTLinked
    1. This table or related slice is empty.
    1. PO
      singulars
      1. PTAnswer
    2. PO
      singulars
      1. PTAnswer
    3. PO
      singulars
      1. PTAnswer
    1. VO
      singulars
      1. POServer and SSL API Security
      1. This table or related slice is empty.
      1. VTUpMod
    2. VO
      singulars
      1. POServer and SSL API Security
      1. This table or related slice is empty.
      1. VTUpMod
    1. CO"Enough" is a difficult question; for some, probably. In certain situations, possibly. Transmitting government secrets, no. Protecting trade secrets which might be transmitted, no. Effectively sidelining freeloaders, no. Security comes at some cost and has to be assessed for transport, permissions, access, etc. So it depends on honestly assessing what's at stake, what's required or expected, and whether the money and time is available to pull that off. Plan accordingly.
      singulars
      1. POServer and SSL API Security
      1. USJared Farrish
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload