MapTiles

פרמיום
Verified
על ידי Support@MapTilesApi | מְעוּדכָּן 13 days ago | Mapping
פּוֹפּוּלָרִיוּת

9.9 / 10

חֶבִיוֹן

159ms

רמת שירות

100%

חזרה לכל הדיונים

Can we limit access by domain?

Rapid account: Admin M C Ba KP Zqw
admin-mCBaKPZqw
a year ago

Hi,

I’m conscious when using leaflet.js that anyone can see and steal the API key. Is there a way we can lock it down by domain to stop potential theft?

Thanks.

Rapid account: Marcushorndt
marcushorndt Commented 3 months ago

Is there any improvement on that point yet? I still see difficulties when there is an open app anybody could use my API key.

Rapid account: Map Tiles Api
MapTilesApi Commented a year ago

Hi,

unfortunately RapidAPI does not support the feature of locking an API key to a domain (referrer). And even that would not be 100% save as anyone could spoof a referrer. Nevertheless we never saw a stolen or misused API key so far. RapidAPI does support key rotation in case you would see any unusual requests (see https://docs.rapidapi.com/docs/keys ).

We’ve sent you some further options for more API key security by mail (should arrive in a few minutes).

הצטרף לדיון - הוסף תגובה למטה:

התחבר / הירשם כדי לפרסם תגובות חדשות
דירוג: 4.7 - הצבעות: 3