Protecting Typesense Key in Javascript Project
TLDR Stefanie expressed concern over potential misuse of their typesense project key. Kishore Nallan proposed using a scoped API key with limitations for protection.
1
Feb 01, 2023 (10 months ago)
Stefanie
09:30 AMKishore Nallan
10:09 AMlimit_hits
inside it. See: https://typesense.org/docs/guide/data-access-control.html#scraping-protectionStefanie
11:50 AM1
Typesense
Indexed 3005 threads (79% resolved)
Similar Threads
Using Typesense Frontend and Protecting API Key
KARTHICK asked about using Typesense from frontend, Jason suggested both frontend and backend are possible but encourages frontend for performance. Marcos mentioned key exposure concerns, Kishore Nallan explained scoped API keys can provide protection.
Securing Typesense Search API Key
sonu was concerned about securing typesense API key while all data are searchable. Jason suggested using the 'limit_hits' parameter to secure the data.
Issues with Generating Scope API Keys in Python
Danny had issues generating a valid scope API key in a Python GraphQL server. Jason suggested encoding changes and confirmed that the key length varies. Issue unresolved with Python, although JS library worked.