I'm working on a desktop app that will communicate with a server. I have some experience with Django and with the user authentication system but I haven't deployed a Django app with authentication yet. I'm planning to use django for the server side component of this desktop app and the two will communicate over SSL with JSON. Using Django, I can authenticate users and hold onto the cookie on the client side for authenticating the views that need it before they return their JSON. I could also send the userid and password in every GET or POST. Which method is better? Is either more secure? Using cookies I can take advantage of stuff built into Django such as the @login_required() decorator.
-- You received this message because you are subscribed to the Google Groups "Django users" group. To view this discussion on the web visit https://groups.google.com/d/msg/django-users/-/bt4FuP1zmYEJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
