On most API’s such as facebook and bebo, to use their API you must

Question

0

Asked: May 13, 20262026-05-13T08:00:10+00:00 2026-05-13T08:00:10+00:00

On most API’s such as facebook and bebo, to use their API you must

0

On most API’s such as facebook and bebo, to use their API you must get a key and a secret. What are some good methods for building a system like this? I will be using PHP/MySQL.

How can I basically verify that a user key and a secret are OK when an app sends an API request? I was thinking of storing them in MySQL, which is where I will have them stored no matter what. But I was wondering if there is some other method that is better for the verification process, instead of hitting the database on every single API request?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-13T08:00:10+00:00

Editorial Team

2026-05-13T08:00:10+00:00Added an answer on May 13, 2026 at 8:00 am

If the key is an encrypted form of the domain and secret they’re using, you wouldn’t need to hit the db to verify them.

if ($key != encrypt($domain . $secret))
    // die

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

On most API’s such as facebook and bebo, to use their API you must

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply