This question is locked. New answers and comments are not allowed.
I am new to everlive. I am trying to create a website that can access the same backend service that my mobile app uses.
I have a question o nthe below javascript snipet I founf in a telerik blog.
var el = new Everlive('YOUR_API_KEY');
Everlive.$.Users.login('jsmith', // username
'password') // password
.then(function (data) { // success callback, this returns the token that we can store to avoid re-authenticating this user!
alert(JSON.stringify(data));
},
function(error) { // error callback
alert(JSON.stringify(error));
});
If I put the above in a js, upload it on to my server, the js will contain clear database password and api key. Is it not a security concern because javascript can be accessed from client machine?
I have a question o nthe below javascript snipet I founf in a telerik blog.
var el = new Everlive('YOUR_API_KEY');
Everlive.$.Users.login('jsmith', // username
'password') // password
.then(function (data) { // success callback, this returns the token that we can store to avoid re-authenticating this user!
alert(JSON.stringify(data));
},
function(error) { // error callback
alert(JSON.stringify(error));
});
If I put the above in a js, upload it on to my server, the js will contain clear database password and api key. Is it not a security concern because javascript can be accessed from client machine?