Quote:
Originally Posted by kovidgoyal
The server supports http digest authentication. Ajax based authentication is insecure without https and you cant use https on a private server (the certificate wont validate).
|
Thanks for answering:
would it be possible to provide a dedicated login call which returns a token (or maybe it is enought to get the session cookie)- where username and password are sent encrypted ?
TIA
Martin