Web-App / StellarDS

WEB TMS WEB Core
1

There are two ways to connect to StellarDS if I understood correctly.

  1. Using Client ID and Client Secret: Since I do not want to store these values on the client I can create some "secured" php service that returns them from a server.
  2. Using Access-Token: The access token must be created by an admin on the StellarDS website with a certain lifetime and "sent" to the user, which is also not a good solution. Is there a way a user can get an access-token from StellarDS in another way by API or similar ?

Both ways I want to go do not seem very sexy to me. How do you deal with this issue ?
Thanks in advance!

2

  1. Yes, this is a possible approach. Know that there is the additional OAuth2 cycle that needs to be done to get a usable access token here and that you can also domain lock these credentials.

  2. We would not recommend this approach for public facing websites, only if the access token permits just read-only access of non- critical data for example