ฝัง
- เผยแพร่เมื่อ 8 ก.ย. 2024
- Allowing your API keys to be intercepted, read by users or worse, malicious actors, can be catastrophic. Knowing how to keep API keys secure with Supabase Vault, behind an encrypted wall, can allow you to focus on app development and not worry about potentially harmful leaks.
In this video we have two methods of using the Supabase vault to store and retrieve our API keys when we need them in our Flutterflow applications. The first is not ideal and the risk is outlined. The second is the most secure, keeping all of your API activity away from your client app.
The code examples used can be downloaded from this link:
rapidmvp.co/ho...
Great video. Thanks so much
Brilliant video. Thank you.
I am using firebase for my app. Have the API calls set to private (cloud functions).. I wanted to use the secrets manager to keep my keys but can’t figure how to do that unless I manually modify the cloud function auto generated by FlutterFlow. Any thoughts on that?
I’m not a Firebase user so can’t help in that one I’m afraid
Brilliant! Thank you so much. Im wondering if the keys are safe when using firebase and toggling "make private" in the advanced api settings?
When you use Firebase and toggle the make private it puts the whole api function at the back end in a cloud function. You may need to enable cloud functions in Firebase but I’m not a Firebase user so you would need to check that out.