MapTiles

フリーミアム
Verified
よって Support@MapTilesApi | 更新済み 19 days ago | Mapping
人気

9.9 / 10

レイテンシー

159ms

サービスレベル

100%

すべてのディスカッションに戻る

Can we limit access by domain?

Rapid account: Admin M C Ba KP Zqw
admin-mCBaKPZqw
a year ago

Hi,

I’m conscious when using leaflet.js that anyone can see and steal the API key. Is there a way we can lock it down by domain to stop potential theft?

Thanks.

Rapid account: Marcushorndt
marcushorndt Commented 4 months ago

Is there any improvement on that point yet? I still see difficulties when there is an open app anybody could use my API key.

Rapid account: Map Tiles Api
MapTilesApi Commented a year ago

Hi,

unfortunately RapidAPI does not support the feature of locking an API key to a domain (referrer). And even that would not be 100% save as anyone could spoof a referrer. Nevertheless we never saw a stolen or misused API key so far. RapidAPI does support key rotation in case you would see any unusual requests (see https://docs.rapidapi.com/docs/keys ).

We’ve sent you some further options for more API key security by mail (should arrive in a few minutes).

ディスカッションに参加しましょう-以下にコメントを追加してください:

ログイン/サインアップして新しいコメントを投稿
評価:4.7-投票:3