I build an app that to each user will have is id and have a profile like (name, age email,location.....).
I thought to do with it the facebook id, but there is the problem that there are users without facebook account,so i thought to give users without a facebook account a unique id.
But here i have a problem that i don't have an answer on this. If i want that a user will be able to edit his profile details , i want to do it by sending a webrequest to my server and in the service i should edit the details by the user request.
The issue is that every user that know how to make this requests can listen to my app HTTP requests and send http requests to my server and change the profile of each user.
My question is if there is any other thing to handle my issue, or this is the only way.
If you want your data to be send securely to server, you need to do encryption, i.e. making plain text encrypted. For this you can use hashing algorithm for validating key between transfer where you key can be anything secret which is randomly generated such as SHA512 algorithm which is only one step encryption i.e. cannot be decrypted. Another option is use two way encryption and decryption such as AES256. Here is nice tutorial on same
Hope this info helps you..