Navigation

    APPDRAG Community
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups

    REMINDER

    Please be respectful of all AppDragers! Keep it really civil so that we can make the AppDrag community of builders as embracing, positive and inspiring as possible.

    APIKey and Security

    General Discussion
    3
    4
    74
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Dick Honing
      Dick Honing last edited by

      how can I hide the APIKey from the (web page's) code?

      And is there a do's and don'ts list in terms of security when building web sites with AppDrag?

      Thanks in advance!

      1 Reply Last reply Reply Quote 0
      • Joseph Benguira
        Joseph Benguira last edited by

        Hey Dick, you should NEVER use your APIKey in the frontend side! It's meant to be used only for severside operations.
        For client side authentication please check JWT or simple auth with SQL and a token as explained in our tutorials

        https://academy.appdrag.com/FullStack-with-cloud-backend-Episode-2.html

        1 Reply Last reply Reply Quote 0
        • Dick Honing
          Dick Honing last edited by

          @Joseph-Benguira thanks! And one more question; does each project have it's own APIKey?

          1 Reply Last reply Reply Quote 0
          • Wassim
            Wassim last edited by

            @Dick-Honing yes, you can also re-generate it from your Cloud Backend Dashboard if it was exposed

            1 Reply Last reply Reply Quote 0
            • First post
              Last post