Reputation: 178
Google End Points Authentication
I need some guidance to secure my Google API.
I've created an Android Application that sends requests to my API. Once I've put my application up for download, how can i ensure that only my application can call my backend API.
I understand that once they have registered with my application, i would be able to use OAuth to provide the security.
However, before they register, what's to stop someone spamming my backend API on creating a new user (Registration).
Upvotes: 0
Views: 37
Answers (1)
Reputation: 669
You need to generate a client ID for your Android app in the development console (console.developers.google.com), then include this ID in an API annotation for your endpoint.
You can find detailed instructions in the following tutorial, under the heading "Specifying authorized clients in the API backend":
Upvotes: 1
Related Questions
- Authenticating user against app engine endpoints
- Authenticating my android client to connect to an endpoint
- Google Endpoints API Authentication to other APIs
- Google App Engine: Endpoints authentication with ID and password
- EndPoints API authentification on GAE python with an Android client
- Self made authentication on Android with App Engine Endpoints and Java
- Using Auth with Endpoints
- Endpoints API with authentication
- How to add authentication to google cloud endpoints?
- Endpoints User Authentication