The short story is this :
I have a web-service (zend framework based) that returns user saved data.
The clients are mobile applications + a possible website.
Query example :
webservice.com/?getdata&user=user1&pass=password
As you can see, I used a user & pass GET parameters for each request in order to validate the request.
This is because the clients are mobile applications that I’m not sure that support cookies. So each request to the service has to require user and pass.
I don’t like this and I’m not sure it’s the only solution.
What would you do in this case? Are there other solutions?