Share Web API access token in different domains

2

Hello.

I'm having a hard time sharing a bearer with different domains. This happens because I have to make a login page outside the domain of the site that consumes the REST API. This site maintains the token in the localStorage, which is not cross-domain. Any suggestions so that, outside the domain, I can 'throw' that token for a specific domain?

Note: GET was the only way I could, but I did not want it to be passed through the URL.

    
asked by anonymous 10.10.2017 / 14:17

1 answer

0

I was able to do this through cookies. I do not have the necessary experience on this subject to know if it is good or bad practice.

Can you give me your opinion on this issue, please?

    
17.10.2017 / 14:52