I’m learning how to create an android application for my erp. I put my api under @frappe.whitelist() (This requires 1 authentication in the url). But the problem is I don’t know how to authenticate it. I am using android studio with java language. Can anyone help?
[image]
Go into user profile that have all access of the system.
There is a option “API Access”
From there generate the API keys.
By these API Secret and Public key you can authenticate your call to whitelis()
Use OAuth to login users on your mobile app. Use the bearer token obtained to authenticate subsequent requests.
Don’t use the API key and secret found under “User” since those cannot be revoked and do not have a timeout (they never expire), and hence should not be stored on the client nor should there be an API to fetch the secret.