user1567691
Reputation: 23
How to protect the REST API in Slim framework
I have written an REST API in Slim framework. Currently the API is open Mode. How Can I add the security to the API. By adding the API KEY or username or password.
Also this API will be used in Mobile application. how can we protect ?
Upvotes: 1
Views: 1302
Answers (1)
Davide Pastore
Reputation: 8738
You could create a route middleware to be sure that the requests have an API key (or whatever).
Example:
<?php
$checkApiKey = function () {
return function () use () {
$app = \Slim\Slim::getInstance();
$apiKey = $app->request->post('apiKey');
if ( Api::check($apiKey) ) { //your magic check on api key
$app->flash('error', 'API Key not available');
$app->redirect('/api/error');
}
};
};
$app = new \Slim\Slim();
$app->group('/api', $checkApiKey(), function ($app) {
//your amazing api routes...
});
Upvotes: 2
Related Questions
- How to Secure a backend mobile REST API to communicate only with my application?
- Slim framework - API Security
- How to secure api end point in php slim framework
- securing slim 3, RESTful API
- Secure Mobile backend
- Securing RESTful web service being accessed by mobile app
- Mobile Backend API REST Security
- Securing a REST API and Slim Framework
- How to make my API private but usable by mobile application?
- API Client Secret with REST Using Slim Framework