Key security issues


#1

Hi there.

I’m looking for a way to use your isochrones in a web application.
Main is PHP, so want to use the js-api.
But how do i secure the key?
JS is Client-Side, so i need to put them in the js source and this a security risk for the key.

Do you have some potential solutions?

Rgds.


#2

Hi @sutosa, you could query the API via php http requests directly and keep the token hidden in your backend.