I developed a solution for this. I posted it here: https://groups.google.com/forum/?fromgroups=#!topic/web2py/YVYQHRJmcos
Happy New Year! On Monday, December 31, 2012 4:38:40 PM UTC-6, Mark Li wrote: > > I am currently trying to authenticate users on an Android app to my Web2py > application. I am not comfortable implementing this on my own without some > guidance/advice, as I'm worried about the security of the login information > becoming jeopardized. > > > I am following the guideline for authentication outlined by Google here: > https://developers.google.com/accounts/docs/MobileApps > > Another outline of what how I'm trying to accomplish Authentication > outlined here: > http://stackoverflow.com/questions/7358715/authentication-model-for-android-application > > > The first step, and my question, is how I would generate a token to return > to the Android app after the user has successfully logged in. It is > suggested that this token be in the same format to what Web2py uses for > session login cookies, except with a 'mobile' flag indicating the token can > only be used for API calls, and doesn't have the short lifespan of a > browser session. > > Any help would be greatly appreciated, as I haven't read too much about > authentication to web2py from an Android app. > --