Hi all, We are exploring the options on securing the Thrift API.
Our objective is to authenticate the server and authorize the client. The options we are exploring are 1. mutual authentication using client and server certificates 2. Use the server certificate to setup a SSL communication and use OAuth 1or 2 for the client Authorization Any suggestions on this matter are highly appreciated! -- Thanks, Sachith Withana
