stackoom
  简体   繁体   中英

How to securely use api key

 原文  2012-07-28 16:59:00       php/ api/ security

Question

I am going to make a simple web app. It will only have a few pages at most, and the main focus of the app is making calls to an api and doing stuff with that info.

I want to know what the best way is to keep my api key secure. Are there extremely lightweight frameworks that I can use for this? Should I just create a php page at the root? I could build something with codeigniter, but that seems like it is too much for what I need.

1 answers

solution1
 4 ACCPTED  2012-07-28 17:00:23

Keep the API key in a file outside of your web root. Then include that file in any file that will require its use. By placing it outside of the web root it cannot be accessed directly through a web browser or other similar means. 

<?php
    // Assuming this file is in the web root
    require('../api_keys.php');

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to securely use cronjobs How to use $_GET securely? how to securely use LIKE How to securely store API keys and secrets? securely pass api key from remote server to authentication page how to use osticket API Key How to securely use reCaptcha with jQuery and PHP How to use Apility.io API key? How to pass paypal API credentials SECURELY in with php (and why is this not considered secure) how to communicate b/w two web applications securely using API?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM