Back to list
Views:   0
Replies:  0
Archived
,
Reply 1
Interesting, thanks. Sounds like APIKey is a pre-defined parameter known to both server and client and used to validate the request on the server-side. Most likely ClientTag serves as APIKey. However, this approach does not seem to be secure as APIKey / ClientTag could be intercepted very easily (but anyway it's better than nothing). So that's why I asked about ClientTag purpose and scenarios to use it.


Michael S, Jan 11, 2012
Reply 2
Here is an interesting link that may help more. As for the ClientTag I can not really help as I do not have the framework documetation.

anyway hope this helps.

http://blogs.msdn.com/b/rjacobs/archive/2010/06/14/how-to-do-api-key-verification-for-rest-services-in-net-4.aspx
Dan Bambling, Jan 11, 2012
Reply 3
Not much. Do you have a link for such implementation details?

Anyway, I'd like to hear the purpose of ClientTag from the framework authors. Note that ClientTag is never mentioned in Patterns In Action 4.0.pdf.
Michael S, Jan 11, 2012
Reply 4
Hi,
Probably if using a non-secure WCF service you could implement some sort of API key like how google does with its maps. This could then be used to manage access etc? Does that help?
Dan Bambling, Jan 11, 2012
Stay Inspired!
Join other developers and designers who have already signed up for our mailing list.
Terms     Privacy     Licensing       EULA       Sitemap      
© Data & Object Factory, LLC.
Made with    in Austin, Texas