MapTiles
Verified
✓
通过
Support@MapTilesApi |
已更新 9日前 |
Mapping
人气
9.9 / 10
延迟
147ms
服务等级
100%
Health Check
100%
返回所有讨论
Can we limit access by domain?
admin-mCBaKPZqw
2年前
Hi,
I’m conscious when using leaflet.js that anyone can see and steal the API key. Is there a way we can lock it down by domain to stop potential theft?
Thanks.
加入讨论 - 在下面添加评论:
登录/注册以发布新的评论
Is there any improvement on that point yet? I still see difficulties when there is an open app anybody could use my API key.
Hi,
unfortunately RapidAPI does not support the feature of locking an API key to a domain (referrer). And even that would not be 100% save as anyone could spoof a referrer. Nevertheless we never saw a stolen or misused API key so far. RapidAPI does support key rotation in case you would see any unusual requests (see https://docs.rapidapi.com/docs/keys ).
We’ve sent you some further options for more API key security by mail (should arrive in a few minutes).