The API needs to look for the magic cookie in the header of every client request, and ignore requests that do not provide the correct magic cookie. See the CloudDataStore.cs file in the mobile client.
The API needs to look for the magic cookie in the header of every client request, and ignore requests that do not provide the correct magic cookie.
See the CloudDataStore.cs file in the mobile client.