comments
simple so far, should i make a nodejs ver for backend but still be the same thing :troll:
why node
because thats my main coding language
why is it needed though?
why not i need somthin to do
For accounts/join and accounts/login I would HIGHLY recommend using POST requests, as opposed to GET requests. They are more secure, and easier to use anyways as well. Read articles below for more details.
security.stackexchange.com/q/147188, stackoverflow.com/q/5868786, sitepoint.com/community/t/117881, portswigger.net/kb/issues/00400300, medium.com/@brockmrohloff_12324/7c4da662cfa2
okay, I got it to POST now.
@jeffalo you should do this as well for the api.
he does
no.. it uses GEt the last time i checked
wasteof uses post requests for auth and posting and commenting, i know this 100%. Get requests are used for retrieval of post, comment, user and more information.
that literally shows my point, it uses GET to get data about the currently logged in user, which you need a token for in the headers
Logs you into an account. (Returns an authorization token)
POST /session
After you do this, you can GET the info about already logged in user(that login used POST. I quoted its docs)