boolean isLogin = false;
:
isLogin = true;
String user_email_address = "example1@gmail.com";
现在我通过请求POST user_email_address
https://example.com/insert_email.php?email=example1@gmail.com保存到我的数据库服务器
user tables
-------id----------user_email_address-----------------
1 example1@gmail.com
2 example2@gmail.com
... ..................
------------------------------------------------------
现在,我希望只有已登录的用户才能在我的Android应用isLogin = true中按表单插入和发送评论,所以:
String user_comment = editText.getText().toString();
https://example.com/insert_comment.php?email=example1@gmail.com&comment=user_comment
所以在服务器上:
INSERT TO user_comment_table
user_email, user_comment
VALUES ( user_email, user_comment )
所以
comment tables
-------user_email----------user_comment-----------------
example1@gmail.com comment ......
example1@gmail.com comment ......
... ..................
--------------------------------------------------------
现在,我需要授权和身份验证:
https://example.com/insert_comment.php?email=example1@gmail.com&comment=user_comment
答案 0 :(得分:2)
您应该阅读此帖(您的Android应用/用户身份验证到您的服务器)。这应该回答你的问题。 http://android-developers.blogspot.com/2016/05/improving-security-and-user-experience.html