Securing Liferay 7.0 JSON web services for mobile app

Vishnu S Kumar, modified 4 Years ago.

Regular Member Posts: 131 Join Date: 7/28/17 Recent Posts

I'm looking for different ways to authenticate the Liferay 7.0 JSON web services exposed to be used from a mobile app. Not interested in the Basic Auth. Please attach any references to look into detail regarding these mechanisms.

Does this mechanism give me the possibility to get the user session in the JSON web service controllers?
Can I force session timeout the user (or token expiry)?

Thanks

application security oauth2

Community

Company

Feedback

Ask Questions and Find Answers

Important:

Ask is now read-only. You can review any existing questions and answers, but not add anything new.

But - don't panic! While ask is no more, we've replaced it with discuss - the new Liferay Discussion Forum! Read more here here or just visit the site here:

discuss.liferay.com

Securing Liferay 7.0 JSON web services for mobile app