? Encripted API possible ?

Is there any way to encript api so that no one can get data directly if he runs it from emulator/restclients/or any api call by reverse engineering the app ...For example you can only get encripted data if you see Banking/UBER/FACEBOOK etc app ...They are much secure ...Is it possible to build like this with laravel/lumen ?I think in o auth/passport/jwt authorised user can call api after reverse engineering ... I think there are so many good developers in laracasts ...Pls give some ideas about that ...

aurawindsurfing

7 years ago

Level 50

Hi,

secure access to your api with JWT
Use tokens/slugs instead of real id's so no one can figure out numbering on your models and therefore figure out how it it structured.
Generate separate encryption key per every client and use it to pass ecrypted data between him and your server.

It has also been asked before:

https://laracasts.com/discuss/channels/lumen/how-to-encrypt-the-response-from-an-api

Hope it helps!

Please or to participate in this conversation.