GenerateToken - unable to use "http referer"
Has anyone been successful in getting the "GetToken" activity using the option of http referer?
I can implement successfully using IP but not able to get it to return a valid token when using referer option?
@Latitude: Is the referer method actually valid in the Silverlight API (see http://forums.arcgis.com/threads/55439-How-to-use-secure-service-feature-with-token-in-silverlight)?
Brad
-
Tokens with referrers will be valid, if they are correct -- but remember that you a requesting a token which will very likely be requested from the server, but then used on the client machine. Since you don't know the details of the client machine in advance, you can't really use a referrer here.
However, you don't really need to include a referrer when requesting a token in a workflow. If you leave this blank you'll get a short lived token, which will be long lived enough to be used in a workflow and then discarded. Security-wise this is a better option as well, as you are not sending a long lived token in the workflow xml messages, where it could possibly be intercepted and used later.
0
Du måste logga in om du vill lämna en kommentar.
Kommentarer
1 kommentar