
204
|
第
7
章
cloudBit
模块。一旦完成了初始原型,考虑这一情况将会帮助设计人员理解实现令牌过
期和刷新机制的重要性。如果某个恶意团体获取了令牌的访问权,只需要一个简单的命
令,如下边的例子中给出的,就会导致原型的蜂鸣器不停地发出刺耳的声音:
$
curl -i -XPOST -H "Authorization: Bearer [AccessToken DELETED]:
application/vnd.littlebits.v2+json"
https://api-http.littlebitscloud.cc/devices/[DeviceID DELETED]/output
-d percent=100 -d duration_ms=-1
HTTP/1.1 200 OK
access-control-allow-headers: Authorization, Content-Type, If-None-Match
access-control-allow-methods: GET, HEAD, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: WWW-Authenticate, Server-Authorization
access-control-max-age: 86400
cache-control: no-cache
content-type: ...