Let's assume I have a site with a MySQL database with logs for login, so a desktop or mobile app would need information like host, root and password to remotely validate a form, but that would not be dangerous every copy of the app have this information in case someone decompile the app and see the connection data, or is there another way more secure?
How do apps validate login to a remote server?
0
asked by anonymous 16.11.2016 / 02:46
2 answers
1
Dude, check out this series of articles from this link: link
It is in English, but it is well explained how the authentication process works. On top of that, each client must have an access token and you will access a link from your database to do these logins on the server. So the login is done in php within the ftp of the site while your app only access a link and send data via that link with a validation token. There is a check in there that is pretty cool.
16.11.2016 / 03:11
0
Communication is usually via webservice (API). The database access data, MySQL for example, is on the server and not on the client.
Do not confuse authentication data from a system user with the private authentication data from the server. Your question question seems to mix both.
16.11.2016 / 02:54