Skip to content
Start building
Back

Appwrite sdk data security

  • 0
  • General
  • React Native
  • Cloud
View on Discord
Ahmed CODE
20 Jun, 2024, 13:47

Is it secure to put the sdk requirement data in the codebase?

If yes, how Appwrite securing my app from unauthorized source

  • example: connection to my project from source that’s not my app
TL;DR
Developers are discussing the security of including Appwrite SDK data in the codebase. As long as permissions are set properly and an API key isn't exposed, it should be fine. App constants can be put in the codebase. Appwrite secures the app by authenticating connections.
Ahmed CODE
20 Jun, 2024, 13:54

To clarify it; I’m talking about app constants

D5
20 Jun, 2024, 13:54

What do you mean?

D5
20 Jun, 2024, 13:55

Yes, people can write if they build a different app

Ahmed CODE
20 Jun, 2024, 14:10

i'm talking about:

TypeScript
export const config = {
    endpoint: 'https://cloud.appwrite.io/v1',
    projectId: 'xxxx',
    platform: 'com.occode.xx',
    databaseId: 'xx',
    storageId: 'xx',
    usersCollectionId: 'xx'
}

const client = new Client()

client
    .setProject(config.projectId)
    .setPlatform(config.platform)
    .setEndpoint(config.endpoint)
Ahmed CODE
20 Jun, 2024, 14:10

is it secure to implement this data in the codebase?

Ahmed CODE
20 Jun, 2024, 20:18

I hope anyone can help me

D5
20 Jun, 2024, 20:23

As long as you don't set an API key and you have permissions set properly, I think it should be fine

Reply

Reply to this thread by joining our Discord

Reply on Discord

Recommended threads

Need support?

Join our Discord

Get community support by joining our Discord server.

Join Discord

Get premium support

Join Appwrite Pro and get email support from our team.

Learn more