The Movie Database 支持
支持 → API 支持
Explain the validation steps
dalseideSTAFFMOD 发布于 2015 年 03 月 13 日 6:45上午
Hi, I'm trying to make a HTML5/Jquery app to use against The Movie Database API. So far so good, havn't had a single problem.
But I would like to understand the process of athenticating the user a bit better, cause I'm suspecting that I am doing it wrong to some degree.
As of now I:
- request token 2b. authenticate with login
- create a new session
- do stuff... (using https: https://api.themoviedb.org/3)
However, I'm doing it this way every time. Is the token, when validated with login once, a substitute for username and password for that user forever? If so I could just store the authenticated token localy and use the preffered 2a-method the next time? The expires_at:"..." parameter makes me confused.
Yes, I'm a novice :) You were to once.
Regards, me.
Bene8493 的回复
于 2015 年 03 月 13 日 1:06下午
The token is just for validation. If a account has been successfully validated, you only need the
session_idand append it to your request."The results of this query will return a
session_idvalue. You should treat this value like a password. Store it securely. This is the value required in all of our write methods."Travis Bell 的回复
于 2015 年 03 月 14 日 10:02上午
There's this document that helps explain the required steps as well: https://www.themoviedb.org/documentation/api/sessions
Cheers.