Home/ Questions/Q 6840377
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-26T23:50:11+00:00

I’m planning to develop an Android application with an app-engine backend. However I would

  • 0

I’m planning to develop an Android application with an app-engine backend.
However I would like to refrain from using authentication (either with Google accounts or Open ID). Since the data will be sent only from my app and not any other client, and will be over SSL connection, I consider the data safe and trusted.

So my question is two-fold:

  • Is there any security issue I’m missing here ?

  • All the examples I found use some sort of authentication. Is it at all possible to use the android appengine infrastructure (RequestFactory, etc) without authenitcation ?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    An app engine application is just a regular web application deployed on app engine. If you need to authenticate your users, do so. If you don’t need to, then don’t.

    You’re missing something, though: once a web app is deployed on app engine, it’s accessible from anywhere on the web, and so anyone (and not just your app) could send requests to this application, whether you use SSL or not. SSL will just make the communication encrypted, and ensure the client that they’re talking to your web app, and not to a rogue web app maskerading as yours.

    • 0