MapTiles

FREEMIUM
Verified
Par Support@MapTilesApi | Mise à jour 19 days ago | Mapping
Popularité

9.9 / 10

Latence

159ms

Niveau de service

100%

Retour à toutes les discussions

Can we limit access by domain?

Rapid account: Admin M C Ba KP Zqw
admin-mCBaKPZqw
a year ago

Hi,

I’m conscious when using leaflet.js that anyone can see and steal the API key. Is there a way we can lock it down by domain to stop potential theft?

Thanks.

Rapid account: Marcushorndt
marcushorndt Commented 4 months ago

Is there any improvement on that point yet? I still see difficulties when there is an open app anybody could use my API key.

Rapid account: Map Tiles Api
MapTilesApi Commented a year ago

Hi,

unfortunately RapidAPI does not support the feature of locking an API key to a domain (referrer). And even that would not be 100% save as anyone could spoof a referrer. Nevertheless we never saw a stolen or misused API key so far. RapidAPI does support key rotation in case you would see any unusual requests (see https://docs.rapidapi.com/docs/keys ).

We’ve sent you some further options for more API key security by mail (should arrive in a few minutes).

Participez à la discussion - ajoutez un commentaire ci-dessous:

Connectez-vous / Inscrivez-vous pour publier de nouveaux commentaires
Note : 4.7 - Votes : 3