Hi Diego, On Fri, Jun 26, 2009 at 11:39 AM, Diego G.<[email protected]> wrote: > > Can the queries of my google app to the datastore be sniffed by > anybody? > Or is the transfer encrypted? > Please confirm whether both the request and the response are safe from > being read by anybody (except for google employees, of course).
The queries between your app and the datastore only travel over Google's internal network; there's no opportunity for anyone else to get hold of them. The queries between you and your app, however, travel in the clear unless you're using SSL. If you're using remote_api, which uses HTTP, queries travel in the clear by default, but you can instruct it to use HTTPS. > > Another question related to security: > The FAQ says > "Google App Engine allows you to serve SSL (HTTPS) traffic through > your appspot.com domain." > Does this imply that I cannot use SSL if I map my google app to a > different domain? Correct. Due to the way SSL works, it's not practical to enable SSL on mapped domains. -Nick Johnson > > Thanks > Diego > > > > -- Nick Johnson, App Engine Developer Programs Engineer Google Ireland Ltd. :: Registered in Dublin, Ireland, Registration Number: 368047 --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en -~----------~----~----~----~------~----~------~--~---
