0

I'm developing a bookmark extension which communicate with my own web app. The user can install the extension on browser like Firefox and login. Currently I send the data per ajax to the server and check. I know this is not the secure way. I read about OAuth2, but this is only if I need data from a third part. Is there a good practice?

abielita
  • 13,147
  • 2
  • 17
  • 59
test123456
  • 317
  • 1
  • 3
  • 10

1 Answers1

0

Based from this thread, you should always use OAuth 2.0 for authentication within extensions. You may check this article for the Security and Privacy: Best Practices on Building a Chrome Extension.

abielita
  • 13,147
  • 2
  • 17
  • 59