[nycphp-talk] SOAP Security?
John Nunez
john at coolmacgames.com
Fri Aug 5 13:49:11 EDT 2005
I have a task manager that I created in PHP over 2 years ago. Our
company now has a intranet and they want to tie in the task manager.
I have used SOAP to retrieve the list of tasks but how can I handle
User Authentication. The one method that I was planning is have the
intranet site login the user. If login is valid then generate a token
and store it into a MySQL HEAP table. The SOAP result is a token and
is sent with each request. With each request if the token is valid I
will update it's LastAccess field in the database. Is there a flaw
with this method?
Thanks,
John
More information about the talk
mailing list