Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
eddieroger
on April 18, 2013
|
parent
|
context
|
favorite
| on:
Why does your API still use HTTP Basic Auth?
The author made this seem outlandish, but really it's a reasonable and easily done way to go about things. Just have a special subdomain for your API (I don't know, api.*.com) and only listen on 443 with it. Done.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
