更新时间:2023-09-24 16:26:22
检索用户密钥只是一个实现细节,您可以随心所欲地进行任何操作,但在服务器上,它通常与用户名一起存储在数据库中.
Retrieving the user key is just an implementation detail you can do any way you like but on the server it is often stored in a database along with the user name.
基本方法非常简单.
真正唯一棘手的部分是与用户共享密钥并确保其安全.这就是为什么某些服务允许生成有限生命周期的共享密钥,以便您可以将密钥提供给第三方以临时代表您工作.
Really the only tricky part is sharing a secret key with the user and keeping that secure. That is why some services allow for generation of shared keys with a limited life time so you can give the key to a third party to temporarily work on your behalf.