top | item 13201250 (no title) AlexWhite_ | 9 years ago This solution is insecure. Any person can intercept token and make harm to your application. discuss order hn newest xmrcivicboix|9 years ago I completely agree. Hence I said it's temporary. When you have a huge influx of paying customers who cannot log in to do their work, you have to balance that a bit. svens_|9 years ago It doesn't seem too bad when enforcing https (using the return address whitelisting in the developer console). Am I missing something? AlexWhite_|9 years ago Customer will see token anyway load replies (1)
xmrcivicboix|9 years ago I completely agree. Hence I said it's temporary. When you have a huge influx of paying customers who cannot log in to do their work, you have to balance that a bit.
svens_|9 years ago It doesn't seem too bad when enforcing https (using the return address whitelisting in the developer console). Am I missing something? AlexWhite_|9 years ago Customer will see token anyway load replies (1)
xmrcivicboix|9 years ago
svens_|9 years ago
AlexWhite_|9 years ago