Not exposing app key and using user token instead

Guilherme · March 11, 2024, 12:12pm

Hey Guys,

For making api call we need to add to javascript our app ID and key. The problem is that exposing the key we give access to anyone change our application data. I tried to use the user token process, but I’m always receiving a forbiden access (403) on my calls. I was wondering if anyone was able to make it work without having to setup a server just to retrieve the authorization on each call?

Can you please share your solution?

Thanks!

Sunny_Singla · March 11, 2024, 4:24pm

Hello Guil,

You must fetch data from scenes and views instead of objects for this. and that scene is accessible for logged in users.

Thanks,
Sunny Singla
ssingla1985@gmail.com
+919855089359

Topic		Replies	Views
Access to scenes/views via API API & Customization	1	316	October 6, 2020
How to upload private files using API API & Customization	0	362	November 28, 2020
Remove "account settings" link API & Customization	3	424	August 24, 2022
How do I hide my app from search results? Get Answers	0	230	May 11, 2016
Drag & Drop API & Customization	1	276	January 16, 2019

Not exposing app key and using user token instead

Related Topics