Hello

Meanwhile I found a few ressources. The task seems to be a big bit more than just the decribed idea.

Especially the token should should be a not transmitted secret. Instead the transmission should contain a string, generated with the token and details from tha actual request and should only be transmitted when using only HTTPS. That way a RSS reader could not generate such a request.

Bad news.

Tschö, Auge