Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Artem2018-05-03 07:45:02
User identification
Artem, 2018-05-03 07:45:02

How to secure public backend routes?

Hello.
There is a slight misunderstanding here. There are separate front-end and back-end applications. Communication between them is built on tokens. But tokens are only used to protect private routes. The user enters a login / password and sends it to the backend, the backend checks them, if everything is ok, then it issues access and refresh tokens. Everything is clear here.
How are public backend routes protected? Or are they not protected? Well, that is, for example, I have a public route /api/items through which the frontend receives a list of something. And I want only a certain frontend to access it, and not any other, so as not to parse the entire list of my items, cURL, for example.
Is it worth it to bother or is it paranoia?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Ainur Valiev, 2018-05-03
@vaajnur

for example PEK public api doesn't require any keys. But Delline requires an api key.
For me it's better without the keys.

Similar questions
H
havemanyquestions2019-06-23 11:48:42
What does the workflow look like when using Auth0 (jwt)? 1Reply
P
Philipp272017-01-30 17:37:19
How to parse authorization tokens in an android application? 2Reply
R
reasoni2015-01-30 08:03:34
How to properly track and handle user authorization? 0Reply
F
Formula_12017-02-02 13:14:09
How to authorize a user on the site and on the forum? 1Reply
M
motomac2015-02-03 07:19:19
How many people use authorization widgets on websites? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question