MYSQL Android Security

Navigation
2

I'm making a login system. But I'm in doubt:

I connect to the database through PHP? I mean, would I just open the link and the server would perform the procedure?

or do I directly from the application through the connector? If I do it by the application, the user will not be able to see the login, password of the Server? Thanks!

    
asked by anonymous 24.09.2015 / 17:27

2 answers

1
It is extremely not recommended to use "connectors" from banks in android to external banks, since you would expose the data of your server in the android application (.apk), being able to be decompiled and the data to be accessed.

I recommend that you do as @Piovezan commented, use WebServices!

I'll list some advantages :

1 - More security and stability . (The server security data will not be exposed in the code.)

2 - Abstraction of server security logic (You will make a request and the server will treat).

3 - The webservice Logic can be shared with other services that need these data from your bank (Any application can contact the service and have access to your data)

Some tutorials that can help you:

link

link

link

Good luck!

    
24.09.2015 / 20:56
1

The correct thing is to do PHP (web service), so the application is not aware of the credentials used to access the bank, besides that part of the code is isolated in the web service. In addition, the connection to the bank will be more stable (mobile connections tend to be less stable).

    
24.09.2015 / 18:16
Format Array differently How to put default value in an input type hidden in angularjs with ionic?