Android Question How can i verify that the request comes from my App?

[Alexander Stolte]

Hello, i have a android app, this app send request to my jrdc2 server, i want to prevent people outside the app from accessing my service. How can i create a AuthKey (HMAC key) to verify that the request come from my app?

does anyone have experience with it and would like to share it with us?

on my jrdc i would add a Filter to handle this.

Thanks

 

[Erel]

It is not really possible.

First step is to use SSL. Without it all the communication is visible anyway.

You can add a username and password URL parameters or headers and check them on the server.