javascript - Hide an API key (in an environment variable perhaps?) when using Angular -

-

i'm running small angular application node/express backend.

in 1 of angular factories (i.e. on client side) make $http request github return user info. however, github-generated key (which meant kept secret) required this.

i know can't use process.env.xyz on client side. i'm wondering how keep api key secret? have make request on end instead? if so, how transfer returned github data front end?

sorry if seems simplistic relative novice, clear responses code examples appreciated. thank you

unfortunately have proxy request on backend keep key secret. (i assuming need user data unavailable via unauthenticated request https://api.github.com/users/rsp?callback=foo because otherwise wouldn't need use api keys in first place - didn't need guess).

what can this: in backend can add new route frontend getting info. can whatever need - using or not secret api keys, verify request, process response before returning client etc.

example:

var app = require('express')();  app.get('/github-user/:user', function (req, res) {     getuser(req.params.user, function (err, data) {         if (err) res.json({error: "some error"});         else res.json(data);     }); });  function getuser(user, callback) {     // stub function should more     if (!user) callback("error");     else callback(null, {user:user, name:"the user "+user}); }  app.listen(3000, function () {   console.log('listening on port 3000'); });

in example can user info at:

the function getuser should make actual request github , before call can change if frontend making request e.g. cheching "referer" header or other things, validate input etc.

now, if need public info may able use public json-p api - example using jquery make things simple:

var user = prompt("user name:"); var req = $.getjson('https://api.github.com/users/'+user); req.then(function (data) {   console.log(data); });

see demo


Comments

Post a Comment

Popular posts from this blog

wordpress - (T_ENDFOREACH) php error -

-
creating wordpress website , i'm getting following php error: parse error: syntax error, unexpected 'endforeach' (t_endforeach) in /home/soralmedia/public_html/wp-content/themes/soral media/woocommerce/myaccount/my-orders.php on line 98 here's code file: <?php /** * orders * * shows recent orders on account page. * * template can overridden copying yourtheme/woocommerce/myaccount/my-orders.php. * * however, on occasion woocommerce need update template files , (the theme developer). * need copy new files theme maintain compatibility. try this. * little possible, happen. when occurs version of template file will. * bumped , readme list important changes. * * @see http://docs.woothemes.com/document/template-structure/ * @author woothemes * @package woocommerce/templates * @version 2.5.0 */ if ( ! defined( 'abspath' ) ) { exit; } $my_orders_columns = apply_filters( 'woocommerce_my_account_my_orders_columns', array( ...
Read more

Export Excel workseet into txt file using vba - (text and numbers with formulas) -

-
i new vba have developed code use in excel move text/numbers txt file. issue have 3 functions need go same txt file. when run first function has set fs = createobject("scripting.filesystemobject") set = fs.createtextfile(module1.nys45uploadfilename, true) a.writeline (str) a.close. the other 2 functions had save. set fs = createobject("scripting.filesystemobject") set = fs.savetextfile(module1.nys45uploadfilename, true) a.writeline (str) a.close. the first function go txt file, other 2 error object doesn't support property or method. when changed 3 create last function goes txt file. can not figure out word use in order make other 2 functions follow txt file in order keyed. the entire code follows private sub addrecord_click() on error goto errhandler module1.nys45uploadfilename = application.getsaveasfilename(filefilter:="textfiles (*.txt), *.txt") if module1.nys45uploadfilename = "false" exit sub ...
Read more

Using django-mptt to get only the categories that have items -

-
sample structure: all uppercase: category mixed case: item root ├── books │   ├── fiction │   │   └── classics │   └── non-fiction ├── clothing └── electronics ├── laptops ├── phones │   ├── apple │   │   ├── iphone 6 │   │   ├── iphone 6 plus │   │   ├── iphone 6s │   │   └── iphone 6s plus │   ├── motorola │   │   ├── moto g4 │   │   ├── moto g4 play │   │   ├── moto g4 plus │   │   └── moto x │   └── samsung └── tablets └── apple i'm trying have index page show "electronics" category. "clothing" category shouldn't show since it's empty , "books" category shouldn't show either since, although has child categories, child categories don't have items. similarly, "electronics" page should show "phones" category. "laptops" category shouldn't show since it's empty , "tablets" category shouldn't show either since...
Read more