Security of Nickname & Key

rbottomsrbottoms Registered Users Posts: 2 Beginner grinner
edited June 13, 2007 in SmugMug API Support & Integrations
Is there are way to use an ecrypted version of our Nickname and Key in JavaScript & HTML when using the API?

I am uncomfortable providing such info in the clear.

Comments

  • devbobodevbobo Registered Users, Retired Mod Posts: 4,339 SmugMug Employee
    edited June 12, 2007
    Hi rbottoms,

    Can you please give me a bit more information, I am not sure that I fully understand what you are asking.

    Cheers,

    David
    David Parry
    SmugMug API Developer
    My Photos
  • rbottomsrbottoms Registered Users Posts: 2 Beginner grinner
    edited June 12, 2007
    Sure:


    var nickname="yourname"; //your smugmug nickname


    document.write('******** src="http:\/\/api.smugmug.com\/hack\/json\/1.2.0\/?method=smugmug.albums.get&SessionID='+sess_id+'&NickName=yourname&JSONCallback=getit2"><\/********');

    ******** type="text/javascript" src="http://api.smugmug.com/hack/json/1.2.0/?method=smugmug.login.anonymously&APIKey=1234YOURKEY7890&JSONCallback=getit"></********




    r.b.
  • devbobodevbobo Registered Users, Retired Mod Posts: 4,339 SmugMug Employee
    edited June 12, 2007
    Hey r.b.,

    Thanks for that. No there isn't really anyway to encode that...but perhaps you could obfiscate it, by using url encoding on those two parameters.

    Let me know if you need help with that.

    Cheers,

    David
    David Parry
    SmugMug API Developer
    My Photos
  • GarethLewinGarethLewin Registered Users Posts: 95 Big grins
    edited June 13, 2007
    Who do you want to hide the info from?



    If you are worried about sniffing, then note that you can use https:// connections, which are encrypted.

    If you want to hide them from the script, then don't store them in the script. Not sure the exact usage of your script so can't advise more than that.
Sign In or Register to comment.