Some info
On my internship I'm making a spotify like application. I'm doing the server-side with a laravel API while the other intern is making the client-side with an Ionic/Angularjs app.
Problem
Is it safe to send the password and username with an POST
request.
On the server-side its encrypted but while its being send its not.
And if its not safe, does anyone know a safe way of doing this.
I Was thinking about hashing the login and then send it but is this really safe?
Thanks in advance and sorry for the bad english.
I ended up using HTTPS. This would make it secure enough.
For future reference, you should probably look at OAuth.