token instead of the normal authentication process?

I have a Rails web application, and I want to build a JSON API as well so I can have mobile applications bound to it.

I've been reading a lot about it, and I don't get it why so many people prefer to activate authentication_token authentication instead of the normal authentication process that Devise offers us.

So, the question is: why use authentication_token ? Any performance reason ? Any security reason ? What is the best way to authenticate through an API ?


authentication_token基本上用于从外部认证用户,也就是说你向用户发送了包含激活链接的电子邮件,其中包含该令牌,因此当他点击链接时,他直接登录。

链接地址: http://www.djcxy.com/p/22010.html

上一篇: 将SSO功能启用到应用程序中

下一篇: 令牌而不是正常的认证过程?