Remote API authentication

Remote API authentication

Hello,

I am trying to use the Writer Remote API, so that I can edit the document and save back to my server. I have a question:

On the request, there is API KEY for Zoho to identify the user (me) in the url, along with the form data (document content, saveUrl ...). On Save, Zoho will send the updated document to the saveUrl. How do I know that this response is from Zoho, or anybody who try to dump stuff into my server using the saveUrl? Is there a way to tell?

Thanks for your help!