Hi, IMHO the best approach would be to send it via a header in the initial HTTP request used to establish the connection. This is the method we follow to send the access token for websocket APIs in the API Manager.
Thanks Arshardh On Fri, Apr 21, 2017 at 11:11 AM, Godwin Shrimal <god...@wso2.com> wrote: > Hi All, > > What is the best way to transmit a security token in web socket while > establishing a connection ? Currently we are passing through path parameter > such as wss://localhost:8080/server/<token> > > Is it secure to sent it via path parameter ? If not what is the correct > approach ? > > > Thanks > Godwin > > -- > *Godwin Amila Shrimal* > WSO2 Inc.; http://wso2.com > lean.enterprise.middleware > > mobile: *+94772264165* > linkedin: *http://lnkd.in/KUum6D <http://lnkd.in/KUum6D>* > twitter: https://twitter.com/godwinamila > <http://wso2.com/signature> > > _______________________________________________ > Dev mailing list > Dev@wso2.org > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- *Arshardh Ifthikar* Trainee Software Engineer WSO2, Inc. Mobile: +94719806525
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
