I have an application on Android, which requests Servlet or JSP files that return JSON.
For example, in my application the user logs in and can add requests, when adding requests, it is added via Servlet in JSON format, so it requests an http URL.
I usually pass a key together via POST and in the Servlet file I check if the key is right and allow the request.
I ask: is there a more effective and secure way?