0

I'm developing webstite using cakePhp. I use the Auth component from cake and also the Acl component for users/permissions. All work fine in the web end. I now want to call some controllers' actions from another device (Android) phone and I want to provide some sort of security for the password. so my qyestions are :

1 - How to secure or encrypt the password in Android client so that I can decrypt in cake (any well knowns or standards for that ?)

2- In the cakebackend , How to and where can I use the decrypted password to allow the response for the user based on his credentials

Thanks so much.

UserNew
  • 83
  • 1
  • 1
  • 4

1 Answers1

0

1) Use https

2) What you want is stateless authentication.

There are plenty of resources online if you search for "sateless authentication" and many sample scripts.

Community
  • 1
  • 1
floriank
  • 25,546
  • 9
  • 42
  • 66