チームを作成APIを追加ドキュメント
サインイン
サインアップ

MapTiles

フリーミアム
Verified
よって Support@MapTilesApi | 更新済み 8日前 | Mapping
人気

9.9 / 10

レイテンシー

147ms

サービスレベル

100%

Health Check

100%

すべてのディスカッションに戻る

Can we limit access by domain?

Rapid account: Admin M C Ba KP Zqw

Hi,

I’m conscious when using leaflet.js that anyone can see and steal the API key. Is there a way we can lock it down by domain to stop potential theft?

Thanks.

Rapid account: Marcushorndt
marcushorndt Commented 1年前

Is there any improvement on that point yet? I still see difficulties when there is an open app anybody could use my API key.

Rapid account: Map Tiles Api
MapTilesApi Commented 2年前

Hi,

unfortunately RapidAPI does not support the feature of locking an API key to a domain (referrer). And even that would not be 100% save as anyone could spoof a referrer. Nevertheless we never saw a stolen or misused API key so far. RapidAPI does support key rotation in case you would see any unusual requests (see https://docs.rapidapi.com/docs/keys ).

We’ve sent you some further options for more API key security by mail (should arrive in a few minutes).

ディスカッションに参加しましょう-以下にコメントを追加してください:

ログイン/サインアップして新しいコメントを投稿