Skip to content
loading...

re: Is it safe to use Google APIs from Client-Side Javascript πŸ€” ❓ VIEW POST

TOP OF THREAD FULL DISCUSSION
re: so people cant bypass CORS from postman and such things. Unfortunately they can be bypassed: medium.com/netscape/hacking-it-out... In my case,...
 

I know we can bypass CORS from tools like postman since it is browser based protection only so I wanted to say to add authentication since cors will be bypassed from other means of making calls. Maybe my framing of sentence made you think I was saying cors can’t be bypassed

Maybe my framing of sentence made you think I was saying cors can’t be bypassed

Yes, it made me thought that you believed that CORS was enough to protect the API.

code of conduct - report abuse