Is it possible to hide the API endpoint from bots?

V

Vadim2022-01-20 18:29:01

API

Vadim, 2022-01-20 18:29:01

Hello everyone,

are there any ways to develop a front-end application so that during its work in production, it would be more difficult for bots to determine the path to the api endpoint, for example, responsible for the login page - this will reduce the number of false positives

Regards,
Vadim

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

S

SKEPTIC, 2022-01-20
@Viji

Encrypt it) Transfer the key somehow to the client in js and decrypt it)
This is if the bot does not emulate a real user.
And if it does and you don't want to fool around with encryption, close access for the left IP. But this will stupidly close access to the API for bots, and not hide its address.

F

FanatPHP, 2022-01-20
@FanatPHP

Not

U

Ukrainskiy, 2022-01-20
@Ukrainskiy

If someone wants to write a bot for your API, they will. So I advise you not to sweat it. Well, or start from the other end, fight bots after the fact, use the mechanisms for detecting and blocking them.