stackoom
  简体   繁体   中英

How to secure when make a call to DialogFlow from Client side (browser)?

 原文  2019-01-07 15:16:01       javascript/ angular/ google-cloud-platform/ frontend/ dialogflow

Question

Where to save security information when I want to send a Web API call to DialogFlow from Browser? I use Angular.

I have a backend of the application, but I don't want to send the request through my backend (don't want to pay for the additional traffic).

Is it even possible to make a secure call from a browser?

Are there any techniques I could apply to achieve this? As I know DialogFlow uses Google Cloud (GCP) behind the scene, are there any recommendations from GCP (so far can't find any)?

1 answers

solution1
 0  2019-01-07 16:25:45

Anything sensitive you need to store client side is out of your control, and therefore you need to assume it will be compromised.

If the API can be called from your server instead of the browser then you can store the token on the server to protect it, but this depends on what the API is used for.

It appears their documentation on accessing the API can be found here: https://dialogflow.com/docs/reference/v2-auth-setup#getting_the_service_account_key

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Need to call client side DLL from browser Call method and access properties in a client side app from a web browser How to call a webservice from client side JavaScript? How to Secure Firebase in client side Javascript How secure is firebase cloud messaging at client side? how to make an axios get server side call then send to client Is this client side application secure? How to develop secure Dropbox browser client? How can I invalidate a page in the browser cache from the client side? Call server side function from Client Side
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM