which authentication method is best for a client app having to interact with a web application that has authentication?

Just wondering what people would suggest for an approach for a WinForms client that will have to interact with my web application (ruby on rails, which will use AuthLogic for authentication).

For example options such as: * authentication each HTTP request, * gets a token for the session until it times out * other?

This can be treated as a generic client to web application type question I think, i.开发者_StackOverflow社区e. web application using the standard HTTP/HTTPS etc.

thanks

I got you boy..!!! I got you raynes..!!!

(..once passed the gone in sixty seconds quote)

voila: Here is what you need ...How to create an api in ruby on rails

You could get WinForms to send an XML request containing the username and encrypted password and then have the server return a user object in the response as well as setting a session variable.

I don't know what you can get back from WinForms, just a guess.