Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Andrew2019-10-14 17:12:11
JavaScript
Andrew, 2019-10-14 17:12:11

How to hide the backend endpoint on the client?

I make the front on vue, I prefer to store all endpoints in one api.js file, where I initialize axios with the necessary parameters, and in the components I simply import the necessary methods and access them.
But if an attacker downloads the code, he can easily find all used endpoints, stupidly using the keywords "get", "post", etc.
Surely webpack chunks will help here (or not?). How to split this file and what to register in the config so that only public endpoints are loaded?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
D
Dmitry, 2019-10-14
@AndrewRusinas

The main bundle (well, or the manifest) will still contain paths to chunks, so that the client knows where to download them from when needed. "Intruder" in the same way can find them.
The problem must be solved from the other side: interaction with non-public endpoints must be closed by authorization or some kind of access keys.

Similar questions
U
unlik2015-03-20 00:01:49
How to backup a dump to a remote server? 2Reply
A
alexdora2016-06-13 05:22:31
What type of table should I choose for 200-400 concurrent connections? 2Reply
Y
Yrets1692021-03-22 15:59:27
How to properly pull from two mysql tables? 3Reply
N
Nikolai Litinsky2018-11-20 02:39:25
How to modify bash script to send mail? 3Reply
V
Vladimir Kapalev2021-03-27 10:25:24
Which program to batch replace text from a list from a file using regular expressions? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question