autodidact : RESTful Authentication

Jun

2008

RESTful Authentication

I might be overcomplicating things, but I just don’t understand RESTful Authentication. I understand the focus on resources (noun) rather than actions (verbs), or at least I think understand this. However, in order for every resource to be uniquely addressable (via an URI), it seems necessary to include a authentication token in every URI (if merely to have a “you are logged in as john.doe|logout” link). This produces ugly, long, crufty URIs which no one likes. Furthermore, the requirement for RESTful applications to be entirely stateless may or may not eliminate the use of cookies (which render an application pseudo-stateful). Anyone want to point me to a good explanation of this?

posted 3 years ago

Cody Ray is an engineer by day and a budding entrepreneur by night. If you're looking for a tech savvy businessman, or a business-minded geek, he's your man.

These pages contain a frequent mind dump of things I like or see or use or find or say or read or whatever. Open Source, Culture, Entrepreneurship, Education, GTD, Web 2.0, Linux, Sustainability, Politics, Philosophy, Technology, and the like.

autodidacta tumblelog

RESTful Authentication