Redirect Notice

As of April 12th, you must go to Progress SupportLink to create new support cases or to access existing cases. Please, bookmark the SupportLink URL and use the new portal to contact the support team.

You will be automatically redirected to SupportLink in 10 seconds.

How can we help you today?

Start a new topic
Discussions Kinvey Forums JavaScript

Is it safe to include keys/secrets in my client-side JavaScript app?

Wouldn't anyone be able to inspect the JavaScript, retrieve the secrets and gain access to my backend?
2 CommentsSorted by Oldest First
It is safe to include the app secret in client-side code (the same question is valid for native apps). The app secret has minimal privileges and uncovering it does not pose a risk to your data in any way.



For more information, see http://devcenter.kinvey.com/guides/security
Here's another stab at this same answer : http://calendee.com/are-baas-providers-secure/
Login or Signup to post a comment
More topics in JavaScript
See all 315 topics