会话ID与令牌 [英] Session ID vs token

问题描述

我们正在构建一个iOS应用程序，它将使用我们的API与我们现有的网站进行交互。该网站使用标准的PHP会话来跟踪登录的用户。

We are building an iOS application that will use our API to interact with our existing website. The website uses standard PHP sessions to keep track of logged in users.

我们如何处理用户在应用程序中的登录？我们在网站或其他方法上使用会话+会话ID吗？

How do we handle user log-in in the application? Do we use sessions + session ID's as we are doing on the website or another method?

我看过API令牌很多，但我还没找到解释会话ID和API令牌之间区别的可靠描述，还是API令牌只是会话ID的另一个名称？

I've seen API tokens mentioned a lot but I've yet to find a solid description that explains the difference between Session ID's and API tokens, or is an API token just another name for a session ID?

推荐答案

在确认访问权限后使用应用程序时，会话基本上用于授权。本文已经详细介绍了这一点。
什么是API令牌

Sessions are basically for authorization when using an application after access tokens have been confirmed. This has been well covered in this post. What is an API token

这篇关于会话ID与令牌的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！