Hi, I’ve been having a blast working through Photon examples and tutorials. So much fun that I want to put a few of the web interfaces on a public web page, so that people can see them work. Two things: Is there an easy way to keep my deviceIDs and access tokens private? I don’t want them to be …

Nice as that may be, that won’t allow others to see his data without knowing his credentials, which kinda defeats the purpose :wink: You can ‘hide’ your credentials by using PHP and handling all that ‘stuff’ on the server side. You can suppress ‘result’ pages by not using HTML forms, but rather ja…

Thanks Moors7. Where would I find some info on using PHP? I work with a bunch of PHPers (in the Drupal world) so I might be able to get some help there. Also, which tutorials that mention javascript are you thinking of? I probably scrolled right past those parts : ) Thanks again, DC

[image] dcdenison: Where would I find some info on using PHP? I work with a bunch of PHPers (in the Drupal world) so I might be able to get some help there. I personally never used it, but I think @wgbartley has, he might have some insights on this :smile: [image] dcdenison: which tutori…

thanks. on that last example, won’t the javascript – with the device ID and the access code – be visible? Or am I reflecting egregious ignorance of how this could work on a publicly accessible Web page?

The example as-is will show the credentials, correct. If you combine this with a server back-end (PHP, or nodeJS, or…) you should be able to circumvent this. You then make calls using the javascript to the server, which will relay them to the cloud, handling the credentials in the server. Guess that…

Keeping deviceID and access tokens private on the Web

General

rickkas7 May 27, 2016, 2:35pm 2

I wrote up an example of using Particle API JS and prompting for username and password in a web form and optionally storing only a temporary access token only in a browser cookie. It uses jquery so it might be a little more than you’re looking for, but it might have some tricks that you might find helpful. It runs entirely in the browser, no server code required.

Topic		Replies	Views
[SOLVED] How to hide access token and device ID in HTML DOC General	5	5715	January 1, 2017
Particle.login from web page using device ID / access token Cloud	5	1150	February 8, 2017
Web Page Sample Code using Particle API JS Tutorials	3	5539	June 8, 2016
Using customer input for device ID General	10	1507	March 6, 2016
Calling the Particle API from a web browser Tutorials	2	1025	April 1, 2021

Keeping deviceID and access tokens private on the Web

Related topics