DEV Community

loading...

Discussion on: Is it safe to use Google APIs from Client-Side Javascript πŸ€” ❓

Collapse
vamsikrish profile image
Vamsi Krishna • Edited

I know we can bypass CORS from tools like postman since it is browser based protection only so I wanted to say to add authentication since cors will be bypassed from other means of making calls. Maybe my framing of sentence made you think I was saying cors can’t be bypassed

Thread Thread
exadra37 profile image
Paulo Renato

Maybe my framing of sentence made you think I was saying cors can’t be bypassed

Yes, it made me thought that you believed that CORS was enough to protect the API.