Ronoaldo, Assuming you are using HTTPS, what about using a shared secret either as a query parameter in the URLs or as a header in the HTTP request? That is effectively what Google Cloud Storage uses to authenticate access to storage.
Good luck, Jeff Dutton On Tuesday, March 20, 2012 11:03:51 AM UTC-4, Ronoaldo José de Lana Pereira wrote: > > Thanks for your reply Brandon. We are doing this currently, but this adds > some small network overhead. We are not using Dreamhost, we have a VPS here > in our country, with an Apache mod_proxy server to route the requests to > the destination. Good to know from experts that this is a good way to solve > the problem, I'll checkout Dreamhost plans anyway. > > Best Regards, > > -Ronoaldo > > Em segunda-feira, 19 de março de 2012 17h37min39s UTC-3, Brandon Wirtz > escreveu: >> >> Get a dream host account. Call it, have it call your third party. That >> way only 1 IP. >> >> >> >> >> >> *From:* >> google-appengine@googlegroups.com<[email protected]>[mailto: >> google-appengine@googlegroups.com <[email protected]>] *On >> Behalf Of *Ronoaldo José de Lana Pereira >> *Sent:* Monday, March 19, 2012 1:33 PM >> *To:* google-appengine@googlegroups.com<[email protected]> >> *Subject:* [google-appengine] Best practices to authenticate requests >> comming from my AppEngine app >> >> >> >> We're integrating our AppEngine app with third parties services. They >> need to restrict access on the resources that we are using. They requested >> an IP address to open their firewall rules, which is not a good practice, >> since all appengine apps may share one or more ip addresses to perform >> URLFetch requests. How should we do this access control securely? Is there >> any secure way to be sure that the HTTP request is comming from my >> application and not from an untrusted source? >> >> >> >> Any tips are welcome. >> >> >> >> Best Regards, >> >> >> >> -Ronoaldo >> >> -- >> You received this message because you are subscribed to the Google Groups >> "Google App Engine" group. >> To view this discussion on the web visit >> https://groups.google.com/d/msg/google-appengine/-/nDzt2E5BuHkJ<https://groups.google.com/d/msg/google-appengine/-/nDzt2E5BuHkJ> >> . >> To post to this group, send email to >> google-appengine@googlegroups.com<[email protected]> >> . >> To unsubscribe from this group, send email to >> google-appengine+unsubscribe@googlegroups.com<[email protected]> >> . >> For more options, visit this group at >> http://groups.google.com/group/google-appengine?hl=en<http://groups.google.com/group/google-appengine?hl=en> >> . >> > -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To view this discussion on the web visit https://groups.google.com/d/msg/google-appengine/-/0lz5DBYV0RAJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en.
