Y
Hacker News
new
|
ask
|
show
|
jobs
by
neikos
2376 days ago
This sounds like authentication with extra steps? Why not just send a bearer token?
1 comments
edoceo
2376 days ago
We do. Header is for message signing. And UA has to be registered, part of the spec provided by client.
link