user786
Reputation: 4364
authentication and authorization in ajax call
Request object and response object are not available in ajax call. And Gmail and many other sites use Ajax and authentication and authorization.
My question is: how they authenticate?
since authentication information mostly stored in Session object` and Session object is not available in ajax call.
I am from asp.net background.
Upvotes: 0
Views: 354
Answers (1)
MvdD
Reputation: 23436
AJAX is just a way for your web page to make HTTP requests. HTTP requests can be authenticated in several different ways.
Most modern APIs use a bearer authentication scheme (like [OAuth2][2]), where they acquire a token from an authorization server and add it to the request in the Authorization HTTP header, like:
Authorization: bearer <base64(token)>
Upvotes: 1
Related Questions
- Handle Authentication in AJAX Calls
- Authorize on Ajax call
- How to proceed with authentication on ajax requests in asp.net mvc + Forms authentication
- C# ASP.NET MVC AJAX Login Form
- How do you handle ajax requests when user is not authenticated?
- Forms authentication with jQuery ajax
- mvc 3, jquery ajax & forms authentication
- asp.net forms authentication Global.asax and ajax calls
- Forms Authentication and POST requests from AJAX
- Authentication - asp.net ajax javascript call to wcf