I want to call a frappe API from a Mobile App (Flutter).
So for authentication purposes, Can we use cookies session ID, would it be a better idea? Because Mobile dev said it won’t be a good idea.
I’d expect some suggestions on this.
Thank you
1 Like
Use OAuth for mobile apps. Cookies won’t work anyway (if multitenant) and you shouldn’t use the API Key/Secret pair since those do not expire.
Set up a OAuth Client and then authenticate using that. You’ll get a bearer token which you can store on your device (in secure storage).
1 Like