Hey devs, I am working on a project that requires restricting a fastapi from public access, but data generated from API needs to be made available to clients. So, came up with this workflow, what do you all suggest?

  • will_a113
    link
    fedilink
    English
    arrow-up
    3
    ·
    11 months ago

    I suppose this makes sense (and is a quick-and-easy instant middleware) if you’re using Firebase for authentication & authorization. Otherwise you’re just obfuscating your original API which is generally pointless if someone really wants your data.

    • alexdeathway@programming.dev
      cake
      OP
      link
      fedilink
      arrow-up
      1
      ·
      11 months ago

      if you’re using Firebase for authentication & authorization. Otherwise you’re just obfuscating your original API which is generally pointless if someone really wants your data.

      Haven’t used Firebase yet. So, have to look into how auth works there.