Hi I'm building a website that is not primarly a social networking site, but I want to enable the social and app stuff by using Shindig (which seems perfeclty suited for that purpose). An odd thing about my website is that it may never be refreshed completely, since this would interrupt the user's activities and experience. Hence, I need to do everything with AJAX calls to some server endpoint. Now, off course, since Shindig provides me with both an RPC and REST server, I want to address the calls to the Shindig server endpoints. I already managed to extend Shindig to pull information from it that is specific for my website. The thing I'm stuck on now is the following:
I want to do RPC requests to the Shindig endpoint from my website using JavaScript. The script is not running inside an app or something that was rendered by Shindig. However, I need to provide owner, viewer, app, ... keys to Shindig that are encrypted in a specific way. Hence my question: How can I use Shindig in a safe way as the general RPC server to my website's backend that can be queried from my front end (!= app)? Many many thanks for help!
