Designing secure Web API access for your website.

When we open web API access to users, we need to make sure each API call is authenticated. This means the user must be who they claim to be. In this post, we explore two common ways: Token-based authentication HMAC (Hash-based Message Authenticatio...